Information Assurance Analyst

Description

RDTS is seeking Cleared Senior to Mid Information Assurance Analysts to support the Bureau of Overseas Building Operations (OBO) at the U.S. Dept of State in Washington, D.C. We are seeking a highly experienced and policy-savvy Information Assurance Analysts to lead information assurance activities supporting the OBO. This senior role provides expert-level support for governance, risk management, compliance, and system authorization activities across a globally distributed IT portfolio.

This is a primarily remote role; however, due to ongoing federal Return-to-Office policy changes, candidates must reside in the Washington, DC metro area and be prepared to report onsite full-time if required. All classified activities will be performed in a secure government facility.

The selected candidate will serve as a subject matter expert on the implementation of NIST RMF, development of ATO packages, policy compliance, and audit readiness for over 40 FISMA-reportable systems. This position supports the ISSO, coordinates with system owners, and plays a key role in the Department’s continuous monitoring and authorization strategy.

KEY RESPONSIBILITIES:

Authorization and Compliance Leadership: Lead the development and maintenance of comprehensive ATO packages, including SSPs, SARs, RARs, and POA&Ms. Ensure documentation aligns with NIST SP 800-53, FISMA, and Department-specific security requirements.

RMF Lifecycle Oversight: Oversee all phases of the Risk Management Framework lifecycle from system categorization through continuous monitoring. Ensure timely and accurate assessment of security controls and facilitate authorizations and reauthorizations.

Policy and Governance Support: Interpret and apply Departmental cybersecurity policies, including 12 FAM, 5 FAH-6, and CSB guidelines. Recommend improvements to internal policies, controls, and procedures to align with emerging federal mandates.

Security Impact Analysis and Continuous Monitoring: Lead Security Impact Analyses (SIA) for system changes. Review vulnerability scan results, update control implementation statements, and track remediation progress through governance systems such as ArchAngel.

Audit Readiness and Documentation Quality: Coordinate internal and external audit activities, prepare evidence packages, and respond to data calls. Ensure all documentation is audit-ready, consistent, and current with evolving control requirements.

Mentorship and Cross-Functional Coordination: Advise mid-level analysts and ISSO support staff. Serve as a primary liaison to cloud architects, infrastructure engineers, and system owners to ensure security is integrated into all IT planning and operations.

Requirements

• Active Security Clearance
• Bachelor’s degree in Cybersecurity, Information Assurance, or a related field (or equivalent experience)
• Minimum of 8 years of information assurance experience in federal environments
• Extensive knowledge of NIST RMF, FISMA, and NIST SP 800-53 controls
• Proven experience leading ATO efforts and supporting complex IT systems through the full security lifecycle
• Strong writing skills with experience producing high-quality SSPs, SARs, and related artifacts.

Preferred Qualifications:

• Prior experience supporting Department of State or similarly structured federal agencies.
• Familiarity with ArchAngel, eMASS, or other A&A governance platform.
• DoD 8570 compliant certification (CISSP, CISM, CAP, or equivalent)
• Background in hybrid environments, including cloud ATOs and continuous monitoring
• Experience participating in cross-agency audits and briefing executive stakeholders

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.