Security Analyst FedRAMP / RMF / NIST Hybrid (Herndon, VA)

Type: Contract / Contract-to-Hire/ Full time
Location: Herndon, VA (Hybrid Tues to Thurs on-site)

Job Description:
We re looking for a Security Analyst with strong FedRAMP and NIST RMF experience to support a major cloud enterprise security program. This hybrid role (3 days/week onsite in Herndon, VA) is part of a prime federal contract supporting SAP NS2.

Responsibilities Include:

• Create and maintain FedRAMP-compliant security documentation (SSP, POAMs, CONMON)

• Collaborate with ISSOs and cloud teams to remediate vulnerabilities

• Analyze cloud system posture and RMF package compliance

• Review and produce technical documentation including data flows, system diagrams

• Ensure controls meet NIST 800-53, NIST 800-171, DISA STIG/SRG requirements

Required Skills:

• U.S. Citizen (mandatory for federal work)

• Experience supporting FedRAMP and RMF A&A processes

• Strong familiarity with FISMA, DISA, and NIST control baselines

• Tools: Nessus, Splunk, or equivalent scanning tools

• Able to interpret architecture diagrams and support compliance reporting

Nice to Have:

• Previous experience supporting federal cloud environments

Start Date: ASAP
Duration: 6 Months (Contract-to-Hire)
Interview: 1 2 rounds (technical + team)

Apply Today!
Be part of a high-impact team securing mission-critical cloud environments.