Cyber Risk Management Framework; RMF Analyst

Join to apply for the Cyber Risk Management Framework (RMF) Analyst role at Liberty Business Associates, LLC.

We are a woman‑owned small business committed to integrity, dedication, innovation, and collaboration. Our mission is to consistently deliver value‑driven solutions to our clients, especially warfighters.

Liberty Business Associates, LLC is a woman‑owned small business. Our vision is to be consistently recognized as the best small business in our industry with which clients, industry partners, and employees want to work. Liberty’s success is driven by our Core Values of Integrity, Dedication, Innovation, and Collaboration. Liberty’s mission is to consistently deliver value‑driven solutions. We partner with our clients to truly understand their objectives, issues, and constraints by practicing consistent communication and flexibility.

These values are why Liberty is successful at what we do.

We offer a 401(k) plan, Health, Dental, Vision, Life Insurance, Short‑and‑Long‑Term Disability, Paid Holidays, Paid Time Off, Sick Leave, and Tuition Reimbursement at all levels.

Risk Management Framework (RMF) Analyst

Charleston, SC

The RMF Analyst plays a critical role in obtaining and maintaining authorization of core infrastructure systems managed by Data Center and Cloud Hosting Services (DC2HS). The analyst will:

• Use Enterprise Mission Assurance Support Services (eMASS) to capture information and artifacts required for authorization in accordance with the Department of the Navy (DoN) RMF Process Guide, Navy Security Control Assessor Risk Assessment Guide, CYBERSAFE requirements, and other applicable agency policies.
• Collaborate with system owners, developers, and security personnel to identify, assess, and mitigate risks throughout the system lifecycle.
• Review and assess technical test results (e.g., ACAS scans, SCAP scans, Evaluate STIG results, STIG checklists) and work with engineers/cybersecurity teams to resolve findings.
• Conduct periodic security reviews and audits to maintain compliance.
• Update Department of Defense Information Technology Portfolio Repository – Department of the Navy (DITPR‑DON) records, if applicable.

• Bachelor’s degree in a technical or managerial discipline OR High School Diploma/GED with equivalent experience.
• Must meet the latest DoD 8570.1M / DoD 8140 cybersecurity workforce training and certification requirements.
• 5+ years of relevant experience with a Bachelor’s degree OR 7+ years with an HS Diploma/GED in Cybersecurity, Engineering, Test & Evaluation (T&E), or Assessment & Authorization (A&A)/Certification & Accreditation (C&A).
• Demonstrated working knowledge of the Risk Management Framework (RMF).
• Experience with eMASS, ACAS, and related Information Assurance tools.
• Familiarity with ATO requirements, security policies, and compliance documentation.
• Ability to evaluate security solutions, supervise/maintain operational security posture, and ensure compliance with change management/configuration control.

• At least one (1) of:
  CompTIA Security+, CompTIA Advanced Security Practitioner (CASP), Certified Information Systems Security Professional (CISSP).
• At least one (1) of: IEEE CS Software Development Associate Engineer Certification, Microsoft role‑based certifications (e.g., MCAD, MCDBA), Red Hat Certification Program (RHCP), Cisco Certified Network Associate (CCNA), Oracle Certified Associate (relevant technology), VMware Certified Technical Associate – Data Center Virtualization, Citrix Certified Administrator, Cloud certifications (e.g., AWS Architect, Developer, Sys Ops Associate).
• Plus:
  Must be certified at Information Assurance Technical (IAT) Level II or higher.

• Seniority level:
  Mid‑Senior level
• Employment type:
  
  Full‑time
• Job function:
  Finance and Sales

Referrals increase your chances of interviewing at Liberty Business Associates, LLC. by 2x.