OverviewWe are seeking an RMF Analyst to support the USDA Risk Management Framework (RMF) processes in alignment with NIST SP 800‑53 and related publications. This role requires cybersecurity expertise and the ability to work effectively in a dynamic, cross‑functional IT organization.
Responsibilities
- Support in assessing IT systems for compliance with defined information security requirements.
- Support Security Controls Assessments in accordance with NIST SP 800‑53.
- Develop training materials, lessons learned, and role‑based training plans to support RMF implementation across the USDA enterprise.
- Utilize RMF workflow tools such as CSAM to support documentation and tracking activities.
- Plan, analyze, develop, track, and present RMF training and documentation as required.
- Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
- Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Experience demonstrating strong analytical, troubleshooting and problem-solving skills for security information and event management.
- Provide input to the Risk Management Framework process activities and related documentation.
- Review artifacts provided, some of which may be technical or procedural in nature.
- Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
- Understand the basic concepts and issues related to cyber and its organizational impact.
- Complete projects, tasks, and associated deliverables on time and with quality.
Qualifications
- 4-year college degree in Computer Science or related field and 2 years experience or 5 years experience in lieu of a college degree.
- Experience demonstrating strong analytical, troubleshooting and problem-solving skills for cybersecurity.
- Excellent communication skills, both written and oral.
- Must be eligible to obtain a Public Trust government security clearance.
- Knowledge of NIST and FISMA guidelines.
- Minimum of one (1) year of related technical, professional experience
Desired Skills
- Knowledge of RMF workflow tools (e.g., CSAM).
- Strong understanding of NIST, FISMA, and applicable federal cybersecurity policies and standards.
- 3 6 years of relevant cybersecurity or RMF experience.