Position Details

Salary $79K – $100K USD / year

Type Full-Time

Experience mid

Exp. Years 3 years

Education Not specified

Category Cybersecurity

About this role

Cybersecurity analyst focusing on RMF/STIG/ACAS for DoD program requirements; supports vulnerability management, cloud governance, and DoD compliance activities.

Key Responsibilities

Review ACAS/Tenable results and coordinate remediation
Interpret STIG requirements and CKLB outputs
Track remediation progress with Jira
Support RMF artifacts (A&A, PPSM, AORs, MFRs)
Cloud governance for cloud-hosted systems

Technical Overview

Hands-on RMF-based security engineering with vulnerability scanning (ACAS/Tenable), STIG/CKLB alignment, and RMF artifact development; cloud governance (AWS/Azure) and DoD program support.

Ideal Candidate

A cybersecurity analyst with 3+ years of RMF/STIG/ACAS experience in DoD/federal environments, capable of vulnerability management and RMF documentation. Proficient with Jira in Agile settings and cloud environments (AWS/Azure), with active Secret clearance.

Must-Have Skills

3 years of experience in cybersecurityRMFor IT governanceActive Secret clearanceExperience with ACASTenableor similar vulnerability scanning toolsFamiliarity with STIGs and CKLBsWorking knowledge of RMF processes and documentationExperience developing technical documentation and SOPsFamiliarity with AWS or Azure cloud environmentsExperience with Jira and Agile environments

Nice-to-Have Skills

Experience supporting DoD or federal programsFamiliarity with eMASSExperience supporting ATO or continuous monitoring activitiesUnderstanding of DoD cloud governance and security requirements

Tools & Platforms

JiraACASTenableSTIGsCKLBRMF toolingeMASS

Required Skills

ACASTenableRMFSTIGCKLBJiraDoD cloud governanceA&APPSMAORMFRContinuous monitoringSOPsRACI

Hard Skills

RMFSTIGACASTenableCKLBJiraDoD cloud governanceAWSAzurevulnerability scanning toolsSOPsRACI matricesA&APPSMAORMFRContinuous monitoring

Soft Skills

communicationcoordinationteamworkdocumentation

Certifications

Required

CompTIA Security+

Industry & Role

Industry Government/Public Sector

Job Function Cybersecurity analyst coordinating RMF/STIG/ACAS activities to support DoD programs and cloud governance

Role Subtype Cybersecurity Analyst

Tech Domains Cybersecurity, Networking / TCP-IP, Amazon Web Services, Microsoft Azure

Keywords for Your Resume

cybersecurity analystremotesecret clearancermfstigacastenablecklbjiraemassatocontinuous monitoringdod cloud governanceawsazuresopracimfraorppsmcomptia security+

Deal Breakers

Active Secret clearance required, 3+ years of RMF/IT governance experience, Experience with ACAS/Tenable or similar tools, Familiarity with STIGs and CKLBs

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Cybersecurity Analyst (RMF / STIG / ACAS) - ACTIVE SECRET CLEARANCE REQUIRED - Remote

Get matched to jobs like this