IT Security Analyst (FedRAMP)

Overview

Hybrid

$80 - $80

Accepts corp to corp applications

Contract - W2

Contract - Independent

Contract - 6 Month(s)

Able to Provide Sponsorship

Skills

FedRAMP

Cybersecurity

IT Security Analysis

Department of Defense (DoD)

Federal Government Security

Aerospace & Defense Security

Continuous Monitoring (CONMON)

POA&M

NESSUS

Splunk

Application Security Scanning

Risk Assessment

DISA STIG

DISA SRG

CNSSI 1253

NIST RMF

NIST 800-53

NIST 800-171

DoD RMF

FISMA

DFARS

Microsoft Visio

System Authorization (ATO)

Security Documentation

Cloud Security

Cloud Compliance

Vulnerability Management

System Categorization

Security Policies and Procedures

Security Control Implementation

DevSecOps

Public Speaking

Technical Writing

Network Diagrams

Security Control Inheritance

Identity and Access Management (IAM)

Java-based Applications

Cloud Platforms (AWS

Azure)

Testing and Development Environments

Compliance Assessment

Security Certifications (CISSP

CISM

CEH

Security+)

Job Details

Job Description:

We are seeking an experienced IT Security Analyst with deep knowledge of FedRAMP, Department of Defense, Federal Government, or Aerospace & Defense cloud security requirements. The selected candidate will support the creation, maintenance, and execution of FedRAMP-mandated security documentation and compliance frameworks in a highly regulated cloud environment.

Key Responsibilities:

Create, update, and maintain FedRAMP security documentation, artifacts, and Continuous Monitoring (CONMON) items including POA&Ms.
Analyze systems for cybersecurity compliance and identify corrective actions.
Collaborate with cloud operations and security teams to resolve vulnerabilities.
Support system categorization, ATO (Authorization to Operate), and risk assessment activities.
Provide guidance based on evolving FedRAMP, NIST, and DoD cybersecurity policies and procedures.
Utilize tools such as NESSUS, Splunk, and application scanners for security reviews.
Interpret and assess network diagrams and system specifications using Microsoft Visio.
Create and review technical documents and ensure security documentation is clear, complete, and compliant.

Required Qualifications:

Must have prior experience in Department of Defense, Federal Government, or Aerospace & Defense cloud security
5+ years of experience in Cybersecurity and Security Analysis
Hands-on experience with FedRAMP documentation (CONMON, POAM, SSP, etc.)
Deep knowledge of security scanning tools (e.g., NESSUS, Splunk, application security scanners)
Strong understanding of DISA STIGs, SRGs, CNSSI 1253, and NIST RMF
Experience with risk assessment methodologies and frameworks including NIST 800-53, 800-171, and DoD RMF
Familiarity with cloud environments, compliance assessments, and vulnerability management
Proficiency with Microsoft Visio for diagramming and documentation
Strong written and verbal communication skills
Bachelor s degree in Computer Science, Information Systems, or a related field

Preferred Qualifications:

Relevant certifications (e.g., CISSP, CISM, CEH, Security+)
Experience supporting Testing, Development, and Pre-Production environments
Familiarity with DFARS, FISMA, and cloud compliance initiatives

To Apply:

Please submit your updated MS Word resume, along with the following details:

Years of experience in Cybersecurity, FedRAMP, DISA STIG, and Risk Management Framework
List of clients/projects with FedRAMP involvement
Experience with security tools (NESSUS, Splunk, etc.)
Certifications held

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.