Cyber Security Analyst - RMF

Trace Systems

$75K — $95K *
Tampa, FL 33647In-Person
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Active Top Secret clearance with SCI eligibility required.
  • U.S. Citizenship is mandatory due to work requirements.
  • Bachelor's degree in related technical field or equivalent experience.
  • 6+ years of experience executing RMF Steps 1-6 with eMASS.
  • 5+ years of producing ATO-quality evidence, including STIG/SRG checklists and compliance tracking.
  • Strong verbal and written communication skills for diverse audiences.

Responsibilities

  • Support 24/7 cybersecurity operations for critical systems.
  • Monitor and maintain cybersecurity posture across environments.
  • Conduct RMF activities throughout the system lifecycle.
  • Perform root-cause analysis for cybersecurity incidents and vulnerabilities.
  • Develop and manage ATO packages and security documentation.
  • Conduct vulnerability assessments and compliance audits.
  • Prepare and deliver cybersecurity status reports and executive briefings.

Benefits

  • Opportunity to work in a mission-critical environment supporting US Special Operations Command.
  • Potential for international travel to remote or austere locations.
  • Involvement in cutting-edge cybersecurity technologies and frameworks.
  • Collaborative work environment with government stakeholders and engineering teams.
Full Job Description
Job Overview

Job Title: Cyber Secuirty Analyst (ISSO)
Location: MacDill, FL

This position is pending contract award.

Job Responsibilities

Trace Systems is seeking an experienced ISSO - RMF Analyst to support a global transport network supporting the US Special Operations Command and mission partners. This role supports critical communications infrastructure and will require shift work. The ISSO will provide ISSO and RMF support for enterprise, tactical, and transport network infrastructures supporting mission-critical operations.
  • Support 24/7/365 cybersecurity operations and compliance activities in support of mission-critical systems and global operations.
  • Monitor, assess, and maintain the cybersecurity posture of information systems across classified and unclassified environments.
  • Support RMF activities throughout the system lifecycle, including system categorization, control implementation, assessment, authorization, and continuous monitoring.
  • Work closely with system administrators, network engineers, cybersecurity teams, government stakeholders, and OEM partners to ensure systems remain secure, compliant, and operationally available.
  • Perform root-cause analysis of cybersecurity incidents, vulnerabilities, compliance deficiencies, and operational disruptions while documenting findings and corrective actions.
  • Develop, maintain, and update Authorization to Operate (ATO) packages, security documentation, System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and related RMF artifacts.
  • Support implementation and validation of NIST 800-53 security controls, DISA STIGs, Security Technical Implementation Guides (STIGs), and other cybersecurity requirements.
  • Conduct vulnerability assessments, security reviews, compliance audits, and risk assessments to identify and remediate security weaknesses.
  • Prepare and deliver cybersecurity status reports, risk assessments, compliance summaries, outage summaries, and executive briefings to customer leadership.
  • Provide cybersecurity guidance and technical assistance to users operating from headquarters, regional hubs, remote sites, and forward-deployed locations.
  • Participate in system upgrades, technology refresh efforts, patch management activities, and configuration management processes to maintain secure system operations.
  • Maintain cybersecurity documentation, architecture diagrams, standard operating procedures, security baselines, and knowledge management repositories.
  • Coordinate activities with engineering teams, cybersecurity personnel, logistics support teams, and program management staff to ensure mission success.
  • Support Information Assurance (IA), Risk Management Framework (RMF), Continuous Monitoring (ConMon), vulnerability management, and cybersecurity compliance activities.
  • Utilize eMASS, ACAS, HBSS/ESS, SCAP, and other cybersecurity tools to track system compliance, vulnerabilities, and remediation efforts.
  • Assist with security architecture reviews, system accreditation activities, risk mitigation planning, and modernization initiatives supporting customer objectives.
  • Support incident response activities, forensic investigations, corrective action planning, and cybersecurity reporting requirements as required.
  • Support occasional travel requirements, site surveys, security inspections, compliance assessments, and field cybersecurity support activities as required.

Minimum Qualifications

  • Active, in-scope US Government issued Top Secret w/ SCI Eligibility clearance.
  • Due to the nature of the work and contract requirements, US Citizenship is required.
  • Candidates must meet the qualification requirements of DoDM 8140.03 (511 / Intermediate) for an applicable Cybersecurity, Information Systems Security, Security Control Assessment, or RMF-related work role (Education, DoD Military/Training, Certification, or a combination thereof), as defined by the applicable contract. Qualification Pathways (One or More May Apply)
  • Education (OR)
    • Bachelor's degree in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, Software Engineering, or related technical field OR equivalent combination of education and experience.
  • DoD/Military Training (OR)
  • Certification such as CompTIA Security+ CE, CEH(P), GMON, GRID, Cloud+, FITSP-O, GCED, GDSA, GSEC, PenTest+, or other approved cybersecurity certifications.
  • Ability to travel worldwide, including to remote or austere locations. Individual trips may extend up to two months, with the possibility of multiple trips per year.
  • 6+ years executing RMF Steps 1-6 with eMASS (SSP, SCTM/controls, SAR, POA&M, Continuous Monitoring).
  • 5+ years producing ATO-quality evidence: STIG/SRG checklists, ACAS/Tenable outputs, scan/patch tracking, artifact curation.
  • Demonstrated experience supporting Risk Management Framework (RMF) activities, cybersecurity compliance efforts, and system authorization processes within DoD environments.
  • Hands-on experience supporting cybersecurity compliance programs, Authorization to Operate (ATO) packages, security control implementation, and continuous monitoring activities.
  • Working knowledge of NIST 800-53 security controls, RMF lifecycle processes, STIG implementation, vulnerability management, POA&M development, eMASS, and cybersecurity compliance requirements.
  • Experience conducting security control assessments, log reviews, vulnerability analysis, compliance audits, risk assessments, and root-cause investigations to identify and remediate cybersecurity findings.
  • Strong verbal and written communication skills with the ability to communicate effectively with technical and non-technical personnel.

Desired Qualification

  • Experience supporting SOCOM, CENTCOM, AFRICOM, TRANSCOM, Space Force, or other Combatant Command environments.
  • Experience supporting OCONUS operations and remote-site sustainment activities.
  • Prior military service or experience supporting DOD customers.

Similar Jobs

More Jobs at Trace Systems

  • Cyber Security Analyst - RMF
    $75K — $95K *
    Tampa, FL 33647 (Hillsborough County)
    Information Technology
    In-Person
  • Cybersecurity Analyst
    $75K — $95K *
    Pope Army Airfield, NC 28308 (Cumberland County)
    Aerospace & Defense
    In-Person
  • Cybersecurity Analyst
    $75K — $95K *
    Pope Army Airfield, NC 28308 (Cumberland County)
    Aerospace & Defense
    In-Person
  • Program Manager
    $90K — $120K *
    Tampa, FL 33647 (Hillsborough County)
    Aerospace & Defense
    In-Person
  • Transport Network Engineer
    $80K — $110K *
    Pope Army Airfield, NC 28308 (Cumberland County)
    Aerospace & Defense
    In-Person

More Information Technology Jobs

Find similar Cyber Security Analyst - RMF jobs: