Cybersecurity RMF Analyst

United States – Remote Full-time$129k - $194k /year
Apply Now

Job Description

KBR is seeking a Cybersecurity RMF Analyst. Responsibilities include: * Evaluating cybersecurity standards and practices of cloud-based systems against FedRAMP, DoW, and DHA requirements. * Documenting cybersecurity posture to support the RMF process. * Facilitating the movement of information systems through the RMF process and maintaining accreditations. * Providing solutions to complex problems using expertise and creativity. * Serving as a Subject Matter Expert on technologies/skills related to A&A activities. * Participating in sessions to identify, plan, and execute strategies for emerging cybersecurity/RMF policies. * Maintaining awareness of evolving security and risk management standards and applying changes to existing processes. * Developing, updating, and reviewing RMF documentation. * Assessing system compliance against NIST, DoW, and DHA security requirements. * Producing evidence to support compliance status. * Reviewing authorization boundary diagrams, service architecture diagrams, data flow diagrams, and hardware/software inventories. * Analyzing vulnerability scans of information systems.

Qualifications

1. Bachelor’s Degree and ten (10) years of experience with Cybersecurity / Information Technology, or eighteen (18) years of hands-on experience with Cybersecurity / Information Technology in lieu of degree. 2. Active DoW Secret security clearance 3. DoW 8570-compliant certification 4. Demonstrated experience assessing, managing, engineering, or architecting cloud technologies from major vendors such as Microsoft, Amazon, or Google 5. A cloud related certification such as Google Certified Professional Cloud Architect, Microsoft Azure Fundamentals, AWS Certified SysOps Administrator, or ServiceNow Certified Administrator 6. Experience with Risk Management Framework 7. Experience in RMF package review, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, architecture diagrams, hardware/software inventories, and system/site policies, procedures, and processes 8. Experience working within DoW 9. Experience in assessing systems using NIST 800-53 and/or DISA STIGs and SRGs

Benefits

- 401K plan with company match - Medical, dental, vision, life insurance, AD&D - Flexible spending account - Disability - Paid time off - Flexible work schedule - Career advancement through professional training and development


Apply Now