SECURITY RMF ANALYST- PLATFORM Position Available In Cumberland, North Carolina

SECURITY RMF ANALYST- PLATFORM 4.1 4.1

out of 5 stars Fort Bragg, NC 28307

Job Description:

Ignite is an

ISO 9001

2015 and CMMI Services Level 3 and Development Level 2 certified, Service-Disabled Veteran-Owned Small Business (SDVOSB), headquartered in Huntsville, AL. By design, Ignite is a provider of professional services to customers in educational, federal, and commercial industries and in every action seeks to be the preeminent provider within this business space.

Location:

U.S. Coast Guard Aviation Logistics Center (ALC) – Information Systems Division (ISD)

Elizabeth City, NC Clearance Requirement:

SECRET Position Overview:

The Security RMF Audit Analyst is responsible for evaluating and validating the implementation of cybersecurity controls in accordance with the Risk Management Framework (RMF). This senior-level role ensures IT systems comply with established information assurance standards, supports audit readiness, and mitigates cyber risks through comprehensive risk assessments, POA&M development, and the integration of security solutions. The analyst works closely with internal stakeholders and external audit teams to identify security weaknesses, define corrective actions, and implement effective cybersecurity practices across classified and unclassified environments. This position is pending contract award.

Key Responsibilities:

Conduct independent audits, assessments, and risk analyses on IT systems to ensure compliance with RMF and cybersecurity policy. Recommend, design, and implement information assurance/security solutions to meet system and enterprise-level requirements. Analyze and resolve cybersecurity violations and threats, documenting root causes and mitigation strategies. Support system authorization efforts by developing security documentation, validating controls, and maintaining system security plans. Coordinate with security teams to evaluate system vulnerability management processes, implement remediation solutions, and generate POA&Ms. Assist in the development of training, processes, and procedures to maintain a continuous RMF lifecycle and transition readiness. Evaluate and maintain the alignment of security architecture and system design with regulatory compliance requirements. Maintain cybersecurity artifacts, perform security testing, and provide input during all phases of the system development lifecycle. Interface with government personnel and auditors during inspections, ensuring all audit findings are addressed and resolved.

Minimum Education and Qualifications:

Bachelor’s or associate degree in Computer Science, Information Technology, Math, Engineering, or a related field, or an industry-recognized IT certification. (Two years of directly relevant experience may be substituted for each year of required education.)

Required Experience and Skills:

Minimum of five (5) years of experience in information security, specifically with auditing and IT control design. Minimum of five (5) years of experience working with Security Information and Event Management (SIEM) tools. Minimum of five (5) years of hands-on experience implementing and supporting the RMF process for government IT systems. Working knowledge of Active Directory, UNIX, Windows operating systems, and relational databases. Strong analytical and communication skills for interpreting technical data and presenting findings to stakeholders. Proven ability to design, document, and implement cybersecurity policies, procedures, and compliance artifacts. SECRET security clearance required.