Job Requirements
Virginia Beach, VA
Secret Polygraph not specified
Career Level not specified
$115,000 - $124,000
Job Description
Job Description
Insight Global is looking for a RMF Security Analyst to join one of our clients in Virginia Beach, VA. This is an onsite role Monday-Friday. You will be responsible for proving cybersecurity technical support to the client. Position requires flexibility to work non-standard work hours and work weeks of more than 40 hours to meet business, customer, and contractual requirements. Additionally, position requires flexibility as duties and responsibilities may be adjusted to meet business, customer, and contractual requirements. 100% Onsite work.
Essential Job Responsibilities
• Conduct security testing and evaluation of servers, workstations, databases, and network infrastructure devices (e.g. firewalls, switches, routers, load balancers) to identify security vulnerabilities and weaknesses, and produce detailed findings reports that support the security authorization process.
• Develop customized scanning and testing configurations within cybersecurity tools to meet specific security and configuration requirements.
• Map identified findings whether discovered through manual assessment, automated scanning, or associated with CVEs to the appropriate NIST SP 800-53 security controls, DoD policies, and relevant technical standards.
• Analyze and interpret cybersecurity directives, policies, and instructions, including CTOs, FRAG/TASK/OPORDs, IAVMs, PKI guidance, and STIG requirements, to assess applicability and required actions.
• Create or Update eMASS artifacts to support Assessments and Authorizations and Annual Security Reviews.
• Evaluate the adequacy of current security testing and assessment toolsets; identify capability gaps and recommend new tools or enhancements to improve assessment coverage and effectiveness.
• Serve as a subject matter expert on known and emerging vulnerabilities, providing analysis of exploitation methods, mitigation and remediation strategies, severity impacts, and operational considerations.
• Review Assessment & Authorization (A&A) documentation to ensure compliance with applicable DoD and RMF cybersecurity policies and standards.
• Perform risk analyses and recommend mitigating controls.
• Assist in drafting, updating, and maintaining cybersecurity policies, procedures, and technical guidance for systems and emerging technologies.
• Provide critical written and oral analysis of security architecture documentation and vulnerability and risk assessments.
• Support the creation, management, and tracking of Plans of Action and Milestones (POA&Ms), ensuring accurate status reporting and alignment with cybersecurity requirements.
• Advise Government in all aspects of Cybersecurity and Risk Management Framework (RMF).
• Track and report cybersecurity compliance status in VRAM and other applicable vulnerability tracking or reporting platforms.
• Conduct independent verification and risk analysis of security configurations, STIG findings, and POA&M entries for systems and devices across the enterprise.
• Demonstrate the ability to work independently with minimal oversight as well as collaboratively in a team environment.
Required Skills & Experience
• High School Diploma or equivalent and 13 years relevant experience or 9 years relevant experience with Bachelors in related field or 7 years relevant experience with Masters in related field or 4 years relevant experience with PhD or Juris Doctorate in related field.
• COMPTIA Security+ CE certification active
• Must have and be able to maintain a US Secret security clearance and ability to Obtain a Top Secret Clearance if needed.
• Must have RMF experience – specifically step 3 and 6
• Must have artifact building experience
Compensation: $55/hr to $60/hr. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start day 1 of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Insight Global is looking for a RMF Security Analyst to join one of our clients in Virginia Beach, VA. This is an onsite role Monday-Friday. You will be responsible for proving cybersecurity technical support to the client. Position requires flexibility to work non-standard work hours and work weeks of more than 40 hours to meet business, customer, and contractual requirements. Additionally, position requires flexibility as duties and responsibilities may be adjusted to meet business, customer, and contractual requirements. 100% Onsite work.
Essential Job Responsibilities
• Conduct security testing and evaluation of servers, workstations, databases, and network infrastructure devices (e.g. firewalls, switches, routers, load balancers) to identify security vulnerabilities and weaknesses, and produce detailed findings reports that support the security authorization process.
• Develop customized scanning and testing configurations within cybersecurity tools to meet specific security and configuration requirements.
• Map identified findings whether discovered through manual assessment, automated scanning, or associated with CVEs to the appropriate NIST SP 800-53 security controls, DoD policies, and relevant technical standards.
• Analyze and interpret cybersecurity directives, policies, and instructions, including CTOs, FRAG/TASK/OPORDs, IAVMs, PKI guidance, and STIG requirements, to assess applicability and required actions.
• Create or Update eMASS artifacts to support Assessments and Authorizations and Annual Security Reviews.
• Evaluate the adequacy of current security testing and assessment toolsets; identify capability gaps and recommend new tools or enhancements to improve assessment coverage and effectiveness.
• Serve as a subject matter expert on known and emerging vulnerabilities, providing analysis of exploitation methods, mitigation and remediation strategies, severity impacts, and operational considerations.
• Review Assessment & Authorization (A&A) documentation to ensure compliance with applicable DoD and RMF cybersecurity policies and standards.
• Perform risk analyses and recommend mitigating controls.
• Assist in drafting, updating, and maintaining cybersecurity policies, procedures, and technical guidance for systems and emerging technologies.
• Provide critical written and oral analysis of security architecture documentation and vulnerability and risk assessments.
• Support the creation, management, and tracking of Plans of Action and Milestones (POA&Ms), ensuring accurate status reporting and alignment with cybersecurity requirements.
• Advise Government in all aspects of Cybersecurity and Risk Management Framework (RMF).
• Track and report cybersecurity compliance status in VRAM and other applicable vulnerability tracking or reporting platforms.
• Conduct independent verification and risk analysis of security configurations, STIG findings, and POA&M entries for systems and devices across the enterprise.
• Demonstrate the ability to work independently with minimal oversight as well as collaboratively in a team environment.
Required Skills & Experience
• High School Diploma or equivalent and 13 years relevant experience or 9 years relevant experience with Bachelors in related field or 7 years relevant experience with Masters in related field or 4 years relevant experience with PhD or Juris Doctorate in related field.
• COMPTIA Security+ CE certification active
• Must have and be able to maintain a US Secret security clearance and ability to Obtain a Top Secret Clearance if needed.
• Must have RMF experience – specifically step 3 and 6
• Must have artifact building experience
Compensation: $55/hr to $60/hr. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start day 1 of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
group id: 10112344
Defining Company Culture
