Job Requirements
Sierra Vista, AZ
Top Secret Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Description
Everforth ECS is seeking an RMF Analyst to work in our Sierra Vista, AZ office.
We are seeking a skilled RMF Analyst to support cybersecurity compliance and system authorization efforts to support a Comply to Connect (C2C) system in the DoW environment. This role is responsible for executing Risk Management Framework (RMF) activities, managing security artifacts, and ensuring systems meet DoD cybersecurity requirements.
The ideal candidate brings hands-on experience with eMASS, understands DoD cyber governance, and can bridge the gap between security compliance and operational system integration.
Key Responsibilities
RMF Execution & ATO Lifecycle Support
Continuous Monitoring & Compliance
Required Skills
#EverforthECS1
ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
is the federal segment of , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.
Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.
We value:
Meet the challenge. Make a difference with Everforth ECS!
Everforth ECS is seeking an RMF Analyst to work in our Sierra Vista, AZ office.
We are seeking a skilled RMF Analyst to support cybersecurity compliance and system authorization efforts to support a Comply to Connect (C2C) system in the DoW environment. This role is responsible for executing Risk Management Framework (RMF) activities, managing security artifacts, and ensuring systems meet DoD cybersecurity requirements.
The ideal candidate brings hands-on experience with eMASS, understands DoD cyber governance, and can bridge the gap between security compliance and operational system integration.
Key Responsibilities
RMF Execution & ATO Lifecycle Support
- Execute RMF activities in alignment with NIST RMF and DoD 8510.01
- Develop, maintain, and manage Body of Evidence (BoE) artifacts
- Administer and maintain records in eMASS
- Support full Authority to Operate (ATO) lifecycle:
- Initial authorization
- ATO sustainment
- Reauthorization activities
- Maintain and update:
- System Security Plans (SSPs)
- Security Control Assessments (SCAs) support artifacts
- Plan of Action & Milestones (POA&M)
Continuous Monitoring & Compliance
- Perform and support continuous monitoring (ConMon) activities across multiple systems and enclaves
- Track vulnerabilities, findings, and POA&M remediation efforts
- Ensure systems maintain compliance with DoD cybersecurity
- Conduct security impact analysis for:
- Infrastructure changes
- System upgrades
- Configuration modifications
- New technology integrations
- Validate changes against RMF controls and requirements prior to production deployment
- Provide guidance to engineering and operations teams on:
- Secure implementation strategies
- Defense-in-depth principles
- Security architecture best practices
- Help maintain a secure, compliant, and defensible enterprise environment
- Communicate technical findings clearly to both technical and non-technical stakeholders
- Support coordination with:
- Program Managers (PMs)
- Information System Security Officers (ISSOs)
- System Owners / Service Owners
- Document findings and recommendations in clear, actionable formats
- Work closely with cybersecurity, engineering, and operations teams
- Contribute to process improvements, documentation, and best practices
- Support knowledge sharing across teams and programs
Required Skills
- Hands-on experience with:
- RMF (Risk Management Framework)
- eMASS
- DoD cybersecurity governance (e.g., NIST 800-53, DoD 8510.01)
- Experience supporting ATO processes and continuous monitoring
- Familiarity with Comply to Connect (C2C) concepts or similar zero-trust/network access control frameworks, to best support the RMF activities for the C2C system
- Ability to assess system changes for security risk and compliance impact
- Strong written and verbal communication skills
- Top Secret Security Clearance
- Prior DoD or Federal cyber experience
- Understanding of:
- Endpoint compliance enforcement
- Network access control / device authorization
- Certifications (nice to have):
- Security+
- CAP (Certified Authorization Professional)
- CISSP
#EverforthECS1
ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
is the federal segment of , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.
Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.
We value:
- Attracting and developing top talent and high-performing teams
- Fostering a culture that is engaging, accountable, and mission-driven
Meet the challenge. Make a difference with Everforth ECS!
group id: 10112231A