MANTECH

MANTECH seeks a motivated, career and customer-oriented Cyber Security Analyst to support our operations in Virginia Beach, VA.  This is an onsite position.

In this role, you will be involved in securing critical defense systems by applying rigorous Risk Management Framework (RMF) standards. You will work closely with stakeholders to ensure that cybersecurity architecture and controls meet the highest levels of integrity and compliance.

Responsibilities include but are not limited to:

• Prepare for RMF execution by defining authorization boundaries, performing system categorization, and applying NIST SP 800-53 security control overlays

• Lead the selection and tailoring of security controls, documenting all risk-based justifications and decisions within the Enterprise Mission Assurance Support Service (eMASS)

• Develop and maintain essential cybersecurity documentation, including the System Security Plan (SSP), Contingency Plans, and Incident Response Plans

• Implement and test security controls using DISA STIGs, SRGs, and ACAS/Nessus vulnerability scans to ensure full-scope compliance across all assets

• Assess the effectiveness of security implementations by conducting independent testing and documenting findings to resolve non-compliant controls through the POA&M process

• Support the system authorization process by managing RMF accreditation packages and coordinating formal workflow actions for Authorizing Official (AO) decisions

• Execute continuous monitoring strategies, including monthly vulnerability scans and annual security reviews, to maintain an acceptable system risk posture

Minimum Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field

• 1+ years of relevant work experience

• CompTIA Security+ CE certification

• 1+ years of RMF experience. Qualification can be met with a bachelor’s degree in computer science, cybersecurity, information systems, or related fields

Preferred Qualifications: 

• ISC2 Certified in Governance, Risk and Compliance (CGRC), ISACA Certified Information Security Manager (CISM), ISC2 Certified Information Systems Security Professional (CISSP) (or Associate)

Clearance Requirements:

• Must have a current and active DOD Secret Security Clearance

Physical Requirements:

• The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.