Cybersecurity Analyst (Secret Cleared)- Hybrid Flexibility
Joint Base Andrews, MD
Full Time Entry-level / Junior Clearance required USD 32K - 60K * est.
Latitude
Latitude Inc is an organization providing staffing solutions and government services for companies and public sector.
Job Description:
We are seeking a highly skilled and detail-oriented Cybersecurity Analyst with expertise in NIST frameworks and Risk Management Framework (RMF) to join our growing cybersecurity team. In this role, you will be responsible for ensuring the confidentiality, integrity, and availability of information systems by implementing and maintaining effective cybersecurity policies, controls, and risk management practices.The ideal candidate will have a strong understanding of NIST standards, RMF processes, and the ability to collaborate with cross-functional teams to assess and mitigate security risks in compliance with organizational and regulatory requirements. This position offers 1 day remote per week.
Active Secret clearance or higher required along with a DoD 8570 Information Assurance Manager Level II certification (CAP, CASP, CISM, CISSP or GSLC).
We are seeking a highly skilled and detail-oriented Cybersecurity Analyst with expertise in NIST frameworks and Risk Management Framework (RMF) to join our growing cybersecurity team. In this role, you will be responsible for ensuring the confidentiality, integrity, and availability of information systems by implementing and maintaining effective cybersecurity policies, controls, and risk management practices.The ideal candidate will have a strong understanding of NIST standards, RMF processes, and the ability to collaborate with cross-functional teams to assess and mitigate security risks in compliance with organizational and regulatory requirements. This position offers 1 day remote per week.
Active Secret clearance or higher required along with a DoD 8570 Information Assurance Manager Level II certification (CAP, CASP, CISM, CISSP or GSLC).
Responsibilities:
- Risk Management Framework (RMF) Implementation:
- Lead the application of the RMF process for information systems, including system categorization, security control selection, implementation, assessment, and continuous monitoring.
- Develop and maintain System Security Plans (SSPs), Risk Assessment Reports (RARs), and Plan of Action and Milestones (POA&M).
- Collaborate with system owners to achieve Authority to Operate (ATO) approvals in compliance with organizational policies.
- NIST Standards Compliance:
- Implement and align security controls based on NIST 800-53, 800-171, and other applicable standards.
- Assess and document system security against NIST standards and provide recommendations for mitigation or remediation.
- Stay updated on NIST guidance and ensure organizational compliance with evolving requirements.
- Security Assessments and Monitoring:
- Conduct vulnerability assessments, risk analyses, and penetration testing to identify security gaps and weaknesses.
- Support the deployment and configuration of security tools, including SIEM, firewalls, IDS/IPS, and endpoint protection.
- Monitor and respond to security incidents, including root cause analysis and corrective action implementation.
- Documentation and Reporting:
- Prepare and maintain security documentation, including policies, procedures, and audit reports.
- Generate and present detailed risk assessment findings and mitigation strategies to technical and non-technical stakeholders.
- Track and report on cybersecurity metrics and key performance indicators (KPIs).
- Collaboration and Training:
- Work closely with IT, compliance, and operations teams to ensure cybersecurity objectives are integrated across projects.
- Provide cybersecurity awareness training and guidance to internal teams to reduce organizational risk.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Category:
Analyst Jobs
Tags: CASP+ CISM CISSP Clearance Compliance DoD DoDD 8570 Firewalls GSLC IDS IPS KPIs Monitoring NIST NIST 800-53 NIST Frameworks Pentesting POA&M Risk assessment Risk Assessment Report Risk management RMF Security assessment SIEM System Security Plan
Regions:
Asia/Pacific
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsInformation Security Officer jobsInformation Security Manager jobsSenior Cybersecurity Engineer jobsSystems Engineer jobsCyber Security Specialist jobsSenior Network Security Engineer jobsSystems Administrator jobsIT Security Engineer jobsSenior Information Security Analyst jobsChief Information Security Officer jobsIT Security Analyst jobsSecurity Consultant jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsThreat Intelligence Analyst jobsCyber Threat Intelligence Analyst jobsSenior Information Security Engineer jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsSenior Penetration Tester jobs
Encryption jobsTop Secret jobsSaaS jobsSplunk jobsGDPR jobsMalware jobsRMF jobsBash jobsEDR jobsSQL jobsSDLC jobsForensics jobsThreat detection jobsIDS jobsDoDD 8570 jobsFinance jobsIPS jobsIntrusion detection jobsCompTIA jobsDocker jobsITIL jobsActive Directory jobsTerraform jobsCRISC jobsGIAC jobs
OWASP jobsSOC 2 jobsSAP jobsClearance Required jobsSANS jobsAnsible jobsUNIX jobsIndustrial jobsCCSP jobsVPN jobsTCP/IP jobsPolygraph jobsHIPAA jobsJira jobsOSCP jobsMachine Learning jobsJavaScript jobsBanking jobsIT infrastructure jobsDNS jobsData Analytics jobsSOX jobsVMware jobsSOAR jobsMITRE ATT&CK jobs