Cybersecurity Analyst in Fairfax, Virginia at Anser

Position Summary

ANSER is seeking a Cybersecurity Analyst to support cybersecurity compliance, Risk Management Framework (RMF) activities, and Authority to Operate (ATO) processes for DoD information systems. In this role, you will ensure systems comply with DoDI 8510.01 requirements and support the assessment, authorization, and continuous monitoring of enterprise systems and biometric platforms. You will conduct cybersecurity assessments, identify and remediate system vulnerabilities, and support secure cloud and network operations across complex mission environments. You will also provide cybersecurity briefings, support RMF documentation efforts, and coordinate with government stakeholders to maintain operational security and compliance.

Day-to-Day Responsibilities

• Support RMF activities and ensure compliance with DoDI 8510.01 requirements for DoD IT systems.
• Create, staff, and process RMF documentation to support system fielding schedules and ATO requirements.
• Support ATO activities, certification efforts, and continuous monitoring processes.
• Perform technical cybersecurity assessments using ACAS, SCAP, STIGs, and related security tools.
• Identify system vulnerabilities and develop Plans of Action and Milestones (POA&Ms) to address security deficiencies.
• Recommend and implement remediation strategies for cybersecurity findings and compliance gaps.
• Prepare and brief cybersecurity readiness updates, milestone reviews, and program status reports to government leadership and stakeholders.
• Adjudicate and resolve cybersecurity issues, incidents, and potential cyber breaches.
• Support cloud, network, and endpoint security operations across enterprise environments.
• Coordinate with program teams and government customers to ensure cybersecurity requirements are integrated into system operations and fielding activities.

Required Qualifications

• Active Secret Clearance.
• Bachelors degree in cybersecurity, computer science, engineering, or a related discipline.
• Minimum of five (5) years of professional experience in cybersecurity or cybersecurity engineering.
• DoD 8570.01-M IAM Level III baseline certification.
• Experience applying the Risk Management Framework (RMF) to large, complex information systems.
• Experience supporting ATO processes, cybersecurity compliance activities, and continuous monitoring programs.
• Hands-on experience with Assured Compliance Assessment Solution (ACAS), SCAP, STIGs, and Evaluate STIG tools.
• Experience with Enterprise Mission Assurance Support Service (eMASS), Host Based Security System (HBSS), and endpoint security technologies.
• Familiarity with cloud security, virtualization technologies, and Identity and Access Management (IAM) concepts.
• Experience with SIEM tools such as Splunk and cybersecurity monitoring solutions.
• Knowledge of network security technologies, including IDS/IPS tools and data loss prevention (DLP) solutions.
• Familiarity with scripting or automation tools such as Python and PowerShell.
• Strong analytical, communication, documentation, and briefing skills.

Preferred Qualifications

• Experience supporting biometric or identity management systems within DoD environments.
• Familiarity with Army or other DoD cybersecurity fielding and sustainment processes.
• Experience supporting cloud-based cybersecurity architectures and Zero Trust initiatives.
• Knowledge of IoT, AI/ML, and emerging cybersecurity technologies.
• Experience supporting Windows Server Update Services (WSUS) and enterprise patch management activities.