Principal/Sr. Principal Cybersecurity Analyst

Position Description

Serco is seeking a Principal or Sr. Principal Cybersecurity Analyst to join our team in support of the Air Force Modeling and Simulation Support Services (AFMS3) program in Orlando, FL. In this role, you will perform risk assessments, implement cybersecurity policies, and ensure system compliance with Department of Defense (DoD) cybersecurity standards and frameworks.

This position plays a critical role in supporting accreditation efforts and maintaining secure systems through rigorous assessment and remediation processes.

This position is contingent upon program award.

In this role, you will:

• Conduct system and network assessments to identify deviations from security policies and standards.
• Perform compliance audits, vulnerability assessments, and configuration validations.
• Support risk mitigation and certification/accreditation (C&A) activities across multiple systems.
• Assist with the implementation of DoD security policies and support process documentation.
• Participate in Security Test and Evaluation (ST&E) activities and document results.
• Develop and maintain system Security Plans and update Plans of Action and Milestones (POA&M).
• Review audit logs and track corrective actions to resolution.
• Analyze security requirements and provide tailored recommendations for additional safeguards.

Qualifications

Qualifications

For Level 3 (Principal Cybersecurity Analyst):

• Bachelor’s degree in Cybersecurity, IT, or related field with 5+ years of experience; or
• Master’s degree with 3+ years of experience; or
• 9+ years of cybersecurity experience in lieu of a degree.

For Level 4 (Sr. Principal Cybersecurity Analyst):

• Bachelor’s degree in Cybersecurity, IT, or related field with 8+ years of experience; or
• Master’s degree with 6+ years of experience; or
• 12+ years of cybersecurity experience in lieu of a degree.
• Experience with NIST and Risk Management Framework (RMF).
• Active U.S. DoD Secret security clearance.

To be successful in this role, you will have:

• Proficiency in risk identification, policy compliance, and documentation of cybersecurity processes.
• Experience conducting both passive and active evaluations of IT systems.
• Ability to support government accreditation and inspection processes.

Additional desired experience and skills:

• Security+ or CISSP certification.
• Familiarity with modeling and simulation environments and tools.

If you are interested in making an impact with a passionate team, submit your application now for immediate consideration. It only takes a few minutes and could change your career!

Company Overview

Serco Inc. (Serco) is the Americas division of Serco Group, plc. In North America, Serco’s 9,000+ employees strive to make an impact every day across 100+ sites in the areas of Defense, Citizen Services, and Transportation. We help our clients deliver vital services more efficiently while increasing the satisfaction of their end customers. Serco serves every branch of the U.S. military, numerous U.S. Federal civilian agencies, the Intelligence Community, the Canadian government, state, provincial and local governments, and commercial clients. While your place may look a little different depending on your role, we know you will find yours here. Wherever you work and whatever you do, we invite you to discover your place in our world. Serco is a place you can count on and where you can make an impact because every contribution matters.

To review Serco benefits please visit: https://www.serco.com/na/careers/benefits-of-choosing-serco. If you require an accommodation with the application process please email: careers@serco-na.com or call the HR Service Desk at 800-628-6458, option 1. Please note, due to EEOC/OFCCP compliance, Serco is unable to accept resumes by email.

Candidates may be asked to present proof of identify during the selection process. If requested, this will require presentation of a government-issued I.D. (with photo) with name and address that match the information entered on the application. Serco will not take possession of or retain/store the information provided as proof of identity. For more information on how Serco uses your information, please see our Applicant Privacy Policy and Notice.

Serco does not accept unsolicited resumes through or from search firms or staffing agencies without being a contracted approved vendor. All unsolicited resumes will be considered the property of Serco and will not be obligated to pay a placement or contract fee. If you are interested in becoming an approved vendor at Serco, please email Agencies@serco-na.com.

Serco is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.