×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

RMF Analyst II

Job in Redstone Arsenal, Madison County, Alabama, USA
Listing for: Chenega Corporation
Full Time position
Listed on 2026-06-05
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below
Location: Redstone Arsenal

Overview

RMF Analyst II

Huntsville, AL

Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level!

Chenega Analytic Business Solutions (CABS) provides federal agencies and commercial customers with trusted insights into Records and Information Management, Administrative Solutions, Information Technology, Engineering, and Training. Formed in 2017 to serve federal and commercial customers, CABS is 8(a) certified and has grown quickly into a leader in the federal IT and Training environment.

The RMF Analyst II shall provide oversight and resources needed to execute the contract requirements for the Army Materiel Command (AMC), Chief Information Office (CIO), across a wide range of cybersecurity tasks. The RMF Analyst II conducts mid-level RMF analysis, System Security Plan development, and A&A coordination.

Responsibilities

* Assist RMF practitioner managing ATO packages, continuous monitoring plans, and eMASS documentation.

* Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance.

* Provide weekly reporting to the senior task lead.

* Assist in the optimization of the current process to streamline the approval process with the Program Information Security System Manager (P-ISSM) prior to submissions to the Authorizing Official (AO).

* Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.

* Track timely and high-quality completion of process tasks and milestones, and report on the status of key milestones to the senior task lead.

* Assist with overseeing the cybersecurity lifecycle from inception to completion.

* Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements.

* Provide direct support to Control Assessors, assisting in the preparation and review of authorization information and documentation for RMF and Continuous Monitoring.

* Maintain and update system security documentation (SSPs, POA&Ms, etc.).

* Evaluate and validate technical processes related to ATO (Authority to Operate) requirements, ensuring alignment with cybersecurity standards.

* Assisting in the preparation and review of authorization information and documentation for RMF and Continuous Monitoring.

* Assist with eMASS package completion and maintenance, including artifacts, self-assessments, and asset management.

* Conduct Security Tests & Evaluations (ST&E) and risk assessments.

* Review project schedules, requirements, and risk assessments, offering recommendations to program stakeholders to enhance security posture.

* Assist with the security plans, as well as assessment reports, plans of action, and milestones for remediation. Defines criticality or sensitivity of systems, performs categorization calculations, and recommends corrective action.

* Develop security plans, as well as assessment reports, plans of action, and milestones for remediation. Defines criticality or sensitivity of systems, performs categorization calculations, and recommends corrective action.

* Recommend baseline security controls, assess changes in controls, and coordinate changes to security authorizations.

* Conduct evaluations to verify that design and implementation meet requirements.

* Confirm that all necessary supporting documents (e.g., Incident Response Plan, Configuration Management Plan, Contingency Plan) are present, complete, and have been reviewed and approved.

* Confirm that every finding is identified and tracked in the POA&M. Ensure each POA&M item has a realistic mitigation strategy, defined resources, and a scheduled completion date.

* Assist with the preparation of test plans and conduct security control testing IAW with NIST SP800-53, DoDI 8510.01, NIST SP 800-37 Rev. 2.

* Other duties as assigned.

Qualifications

* A bachelor's degree in science, Technology, Engineering, Mathematics, IT, or business-related programs is required.

* 2+ years of experience in Cybersecurity compliance/Risk Management Framework.

* 2+ years of experience with RMF (NIST SP800-53, NIST SP 800-37 DoDI 8510.01), ATO packages, POA&M development, and system categorization is required.

* 2+ years' experience supporting DoD or federal programs is highly desirable

* Baseline and Full Computing Environment Certifications for IAT-II IAW DoD 8570.01-M (Security+ certification) required.

* Must have an active Secret clearance with the ability to obtain TS with SCI eligibility.

Preferred Qualifications:

* Cybersecurity certifications like CISSP (Certified Information Systems…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search