ManTech International

Senior Cyber Security Analyst

ManTech International$94K — $157K *
Technical Services
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in IT, Cybersecurity, or related field with 8+ years of relevant experience OR High School Diploma with 11 years of experience in RMF processes.
  • Certified Information Systems Security Professional (CISSP).
  • Security+ CE certification with ACAS and eMASS experience.
  • Proficient with Linux and Windows environments.
  • Expertise in applying DISA STIGs across various systems.
  • Hands-on experience managing RMF packages using eMASS.

Responsibilities

  • Prepare and conduct risk management framework (RMF) execution and system categorization.
  • Select and implement security controls using DISA STIGs, with an emphasis on Linux systems.
  • Maintain RMF package accuracy in eMASS, coordinating workflow for system authorization.
  • Implement continuous monitoring strategies for Linux log and security event analysis.
  • Conduct annual security reviews and update the system security plan as necessary.
  • Provide guidance on compliance and risk management strategies throughout RMF processes.
  • Advise leadership on emerging threats and security control gaps.

Benefits

  • Health Insurance
  • Life Insurance
  • Paid Time Off
  • Holiday Pay
  • Short-term and long-term Disability
  • Retirement and Savings plans
  • Learning and Development opportunities
  • Wellness programs
Full Job Description
General information

Requisition #

R69162

Locations

USA-VA-Virginia Beach

Posting Date

07/07/2026

Security Clearance Required

Secret

Remote Type

Onsite

Time Type

Full time

Description & Requirements

MANTECH seeks a motivated, career and customer-oriented Senior Cyber Security Analyst to join our team in Virginia Beach, VA. This is an onsite position.

As a Senior Cyber Security Analyst, you will provide direct support to the Advance Electronic Systems (AES) team and its customers in support of Risk Management Framework (RMF) activities. This role focuses on security control implementation, assessment, continuous monitoring, and RMF compliance, with primary emphasis on Linux systems and supporting knowledge of Windows environments. You will serve as the point of contact for all cybersecurity-related matters, including security control implementation, documentation, and compliance activities.

Responsibilities include, but are not limited to:
  • Prepare for Risk Management Framework (RMF) execution and perform system categorization by conducting comprehensive mission analysis, defining the authorization boundary with detailed network diagrams, hardware/software inventories, and data flow documentation. Determine mission criticality and apply relevant overlays to establish the appropriate security control baseline per NIST SP 800-53 Rev 5 and DoD/Navy policy
  • Select, tailor, implement, and assess security controls using DISA STIGs (with emphasis on Linux platforms), SRGs, SCAP, ACAS/Nessus vulnerability scans, and NIST SP 800-53A Assessment Procedures. Perform hands-on configuration, hardening, log analysis, and remediation on Linux systems, while applying equivalent controls and STIGs to Windows endpoints. Execute testing, validate configurations and access controls, document implementation status, test results, and evidence in eMASS, and manage POA&M entries with complete risk analysis
  • Support system authorization by maintaining a complete and accurate RMF package in eMASS, including the SSP, POA&M, and supporting documentation. Coordinate workflow actions for Authorizing Official decision-making
  • Conduct continuous monitoring by implementing the System Level Continuous Monitoring (SLCM) Strategy, with focus on Linux system logs and security events alongside Windows endpoint monitoring
  • Conduct Annual Security Reviews (ASRs) and update the System Security Plan (SSP) and POA&M to reflect changes in risk posture
  • Provide guidance on RMF compliance, risk management, and security strategies across all RMF steps.
  • Advise leadership on emerging threats, control gaps, and mitigation priorities, particularly for Linux environments
  • Retire and decommission systems at end-of-life. Execute data sanitization per DoD 5220.22-M, hardware disposition, and documentation closeout


Minimum Qualifications:
  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Information Systems, or related field and 8+ years of combined experience in RMF processes and secure system engineering in DoD environments OR High School Diploma and 11 years of combined experience in RMF processes and secure system engineering in DoD environments
  • Certified Information Systems Security Professional (CISSP) certification
  • Security+ CE certification with ACAS and eMASS experience
  • Experience with Linux and/or Windows
  • Expertise and hands-on experience in applying DISA STIGs
  • Hands-on experience with eMASS for RMF package management, POA&M maintenance, and risk assessment


Preferred Qualifications:
  • Familiarity with network topology documentation in air-gapped environments
  • 2+ years executing full SDLC in DoD environments
  • Experience with the development in low level (machine) to very high level (abstract, goal oriented) programming languages and frameworks, including C/C++/C#, Python, JavaScript, TypeScript and Angular/React
  • Certified in CompTIA Linux +, Governance, Risk and Compliance (CGRC), CompTIA SecurityX


Clearance Requirements:
  • Must be a US Citizen and hold an active Secret Security Clearance with ability to obtain Top Secret if required.


Physical Requirements:
  • Must be able to remain in a stationary position 50% of the time.
  • Needs to occasionally move about inside offices, shipboard spaces, or industrial environments to access equipment and systems.
  • Frequently communicates with co-workers, management, and customers, and must be able to exchange accurate information in these situations.


The projected compensation range for this position is $94,800.00-$157,200.00. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, MANTECH invests in its employees beyond just compensation. MANTECH's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, short-term and long-term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections.

About ManTech International

ManTech International Corporation is an American defense contracting firm that was founded in 1968. The company provides cybersecurity, intelligence, and defense solutions to the United States Government. ManTech has over 9,000 employees and operates in 40 countries worldwide. The company's services include software development, systems engineering, and enterprise IT solutions. ManTech has been awarded numerous contracts by the U.S. Department of Defense and other government agencies.
Learn more about ManTech International
Size
9,800 employees
Market Cap
$3.7 billion
Industry
Net Income
$120.5 million
Founded
1968
5 Year Trend
+9.8%
Revenue
$2.5 billion
NASDAQ

Similar Jobs

More Jobs at ManTech International

More Technical Services Jobs

Find similar Senior Cyber Security Analyst jobs: