Everforth ECS is seeking a
Junior Cyber Security Analyst to work out of our
Ft. Meade, Md office.
Everforth ECS is seeking an experienced
Junior Cyber Security Analyst to support robust Impact Level (IL) 5 and IL6 programs in an operational DoW environment that houses multiple U.S. Coalition Mission Partner Environments (MPE).
This position is a demanding, high-energy role that requires strong cybersecurity judgement, attention to detail, and the ability to support authorization, compliance, and continuous monitoring activities across multiple enclaves in a dynamic Azure DoW environment. The Junior Cyber Security Analyst will support cybersecurity operations, compliance, and continuous monitoring activities for a DoD Azure infrastructure environment. The analyst will assist the ISSO and security team with vulnerability tracking, STIG artifact review, POA&M updates, security tool monitoring, evidence collection, and ATO support documentation. This role will work closely with cloud engineers and cybersecurity to help maintain the security posture of the environment and support ongoing RMF and authorization activities. The Junior Cyber Security Analyst reports to the Senior Technical Program Manager.
Job Responsibilities:
- Assist with:
- Vulnerability management activities, including reviewing ACAS/Nessus scan results, tracking findings, and coordinating remediation status with technical teams.
- Reviewing and validating DISA STIG artifacts, checklists, and scan outputs for Windows, RHEL, and Azure environments.
- Control documentation, artifact mapping, and validation of security evidence against RMF and ATO requirements.
- Support:
- POA&M maintenance by helping update milestones, remediation status, risk statements, evidence, and closure documentation.
- Incident response documentation, alert triage, and escalation activities as directed.
- Help collect, organize, and maintain cybersecurity artifacts needed for RMF, ATO, audits, assessments, and continuous monitoring.
- Monitor or assist with security tools such as Microsoft Sentinel, Trellix, Microsoft Defender for Cloud, ACAS, and related dashboards.
- Perform recurring log analysis within Azure Sentinel to identify anomalous events.
- Help document security findings, remediation actions, meeting notes, action items, and compliance status updates.
- Coordinate with cloud engineers, system administrators, and cybersecurity personnel to gather evidence and track remediation progress.
- Participate in recurring cybersecurity, vulnerability management, POA&M, and ATO status meetings.
- Maintain accurate trackers, repositories, reports, and documentation used to support the security posture of the Azure environment.
- Other duties, as assigned.
- U.S. Citizen.
- Active Secret clearance - TS/SCI preferred (Or ability to obtain)
- Obtain a DoD 8140 IAT Level II Security+ (or higher) within 30 days.
- Ability to work five days per week onsite at Fort Meade, MD.
- Foundational knowledge of cyber security principles, vulnerability management, and security operations.
- Basic technical understanding of client-server architecture, Active Directory, and operating systems, specifically Windows Server and Red Hat Enterprise Linux (RHEL).
- Strong data analysis and spreadsheet skills (e.g., MS Excel) for organizing, filtering, and tracking large datasets of vulnerability scans and compliance checklists.
- Basic conceptual understanding of cloud networking (subnets, network security groups, firewalls) within a Microsoft Azure environment.
- Familiarity with DoD RMF, ATO support, POA&Ms, STIGs, and continuous monitoring concepts.
- Ability to:
- Review vulnerability scan results, security findings, and compliance artifacts under the guidance of senior security staff.
- Assist with maintaining cyber security documentation, evidence repositories, meeting notes, trackers, and status reports.
- Collaborate with technical teams, including cloud engineers, system administrators, and security personnel.
- Strong attention to detail and ability to follow documented processes for artifact review, finding validation, and remediation tracking.
- Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
- Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).
Salary Range: $80,000-100,000
General Description of Benefits
