Location: Tampa, FL (Hybrid)
Employment Type: Full-Time Core business hours with on-call availability
Security Clearance: minimum T3 required

Job Summary

We are seeking a skilled Information Security Analyst to support cybersecurity compliance and vulnerability management activities for a federal government IT program. You will perform security assessments, manage POA&Ms, support RMF documentation, and contribute to maintaining the security posture of enterprise systems in a DoD environment.

Key Responsibilities
• Perform vulnerability scanning, STIG assessments, and security compliance monitoring
• Develop and manage POA&Ms for identified vulnerabilities in compliance with DoD timelines
• Support RMF documentation and ATO package development in eMASS
• Assist with cyber incident identification, reporting, and response activities
• Support external security assessments, audits, and penetration tests
• Maintain security compliance documentation and cybersecurity workforce qualification records
• Assist with Privacy Impact Assessments and information protection compliance monitoring

Required Qualifications

• U.S. Citizenship required
• Security Clearance: minimum T3 required
• Bachelor's degree in a relevant field OR DoD 8570/8140 IA baseline certification
• Minimum 3-5 years of information security experience in a federal or DoD environment
• Working knowledge of NIST SP 800-53, RMF, and STIG compliance requirements
• Hands-on experience with ACAS, SCC/SCAP, or similar vulnerability scanning tools

Preferred Qualifications
• Security+, CEH, or equivalent DoD 8570 certification
• eMASS experience for RMF package support
• Familiarity with application security scanning tools (Fortify, Sonatype, BurpSuite)
• Knowledge of federal privacy compliance requirements

Certifications
• DoD 8570 baseline certification required (Security+ or equivalent)