Find The RightJob.
IT Analyst (Validator, KTR-26-005)
Location:
China Lake, CA
Status:
Full Time
Job Description:
Job Summary: Daily tasks include but are not limited to:
Execute and oversee RMF Documentation and Compliance: Review the accuracy and traceability of all A&A documentation within eMASS to support timely system authorization.
Review documentation to ensure full compliance with cybersecurity policies and standards (DoD, DoW, DoN, and RMF).
Conduct security control assessments and validations of a system's technical and non-technical security features to mitigate known threats and vulnerabilities effectively. These assessments should comprehensively identify and assess impacts while also taking into account existing risk mitigation strategies.
Ensure the completion of all necessary RMF products and reporting in accordance with policy and in collaboration with the Security Control Assessor.
Assist in updating any documentation related to risk assessments (such as Risk Assessment Reports, Plan of Actions & Milestones, etc.) based on the results of assessments.
Conduct the necessary vulnerability analysis to facilitate the mitigation and determination of residual risk as required.
Provide support for the continuous monitoring program as needed, especially when System Level Continuous Monitoring results are essential to meet ongoing authorization requirements.
Assist in contingency planning, testing, and execution as necessary.
Support the incident response process and actively participate in meetings with the program team, offering updates on project status.
Applicant should possess a strong understanding of the RMF process, as well as a working knowledge of eMASS, eMASSter, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio applications.
Excellent written and verbal communication skills, with an ability to clearly report on technical findings to both technical and non-technical stakeholders.
Ability to work independently and manage multiple tasks in a fast-paced environment.
Education/Experience:
Due to the sensitive nature of the work, U.S Citizenship is required.
Must be able to obtain and/or maintain a Security Clearance for duration of employment.
Prior experience supporting Navy-specific systems or enterprise networks.
Execute and oversee RMF Documentation and Compliance: Review the accuracy and traceability of all A&A documentation within eMASS to support timely system authorization.
Review documentation to ensure full compliance with cybersecurity policies and standards (DoD, DoW, DoN, and RMF).
Conduct security control assessments and validations of a system's technical and non-technical security features to mitigate known threats and vulnerabilities effectively. These assessments should comprehensively identify and assess impacts while also taking into account existing risk mitigation strategies.
Ensure the completion of all necessary RMF products and reporting in accordance with policy and in collaboration with the Security Control Assessor.
Assist in updating any documentation related to risk assessments (such as Risk Assessment Reports, Plan of Actions & Milestones, etc.) based on the results of assessments.
Conduct the necessary vulnerability analysis to facilitate the mitigation and determination of residual risk as required.
Provide support for the continuous monitoring program as needed, especially when System Level Continuous Monitoring results are essential to meet ongoing authorization requirements.
Assist in contingency planning, testing, and execution as necessary.
Support the incident response process and actively participate in meetings with the program team, offering updates on project status.
Applicant should possess a strong understanding of the RMF process, as well as a working knowledge of eMASS, eMASSter, STIG Viewer, SCAP Compliance Checker (SCC), VRAM, and Visio applications.
Excellent written and verbal communication skills, with an ability to clearly report on technical findings to both technical and non-technical stakeholders.
Ability to work independently and manage multiple tasks in a fast-paced environment.
Education/Experience:
Due to the sensitive nature of the work, U.S Citizenship is required.
Must be able to obtain and/or maintain a Security Clearance for duration of employment.
Prior experience supporting Navy-specific systems or enterprise networks.
Education and Work Experience Requirements:
Due to customer requirements, U.S Citizenship is required.
Must be able to obtain and maintain a DoW Security Clearance for duration of employment.
BS - Computer Science or other technical field with a minimum of 4 yrs relevant work experience
or 6 yrs relevant work experience in the planning, implementation, upgrading, and/or monitoring of security measures which make up the protection of corporate or government computer networks.
Capable of performing independently.
IAM Level II certificate or higher (CAP, CASP+CE, CCISO, CISM, CISSP, GSLC, HCISPP) required.
Salary: For Contract LCAT purposes the expected pay range for this position varies (possible $114,400 to $133,120) but is subject to change with experience and educational levels.
Must be able to obtain and maintain a DoW Security Clearance for duration of employment.
BS - Computer Science or other technical field with a minimum of 4 yrs relevant work experience
or 6 yrs relevant work experience in the planning, implementation, upgrading, and/or monitoring of security measures which make up the protection of corporate or government computer networks.
Capable of performing independently.
IAM Level II certificate or higher (CAP, CASP+CE, CCISO, CISM, CISSP, GSLC, HCISPP) required.
Salary: For Contract LCAT purposes the expected pay range for this position varies (possible $114,400 to $133,120) but is subject to change with experience and educational levels.
Security Clearance:
Secret
Similar jobs
No similar jobs found
© 2026 Qureos. All rights reserved.