More jobs:
NIH - Cyber Program Analyst
Job in
College Park, Prince George's County, Maryland, 20740, USA
Listed on 2026-07-06
Listing for:
cFocus Software Incorporated
Full Time
position Listed on 2026-07-06
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
cFocus Software seeks a Cyber Program Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:- Public Trust Clearance
- B.S. Computer Science, Information Technology, or a related field
- 2+ years supporting federal cybersecurity programs, RMF, governance, compliance, or ISSO activities.
- Preferred certifications include Security+, CAP, CISSP, CISM, PMP, or equivalent.
- Knowledge of NIST RMF, NIST SP 800-53 Rev.
5, FISMA, FIPS, A&A, POA&M management, SSP development, cybersecurity reporting, risk management, executive communications, Service Now, Microsoft Office, and cybersecurity governance.
- Support day‑to‑day program management activities, schedules, milestones, action items, and project reporting.
- Develop weekly, monthly, quarterly, and ad hoc cybersecurity reports, executive dashboards, risk profiles, and program metrics.
- Coordinate Program Management Plans, Project Management Plans, Integrated Master Schedules, SOPs, and other contract deliverables.
- Support Front Door security operations by tracking requests, maintaining documentation, and coordinating issue resolution.
- Assist ISSOs and System Owners with Assessment and Authorization (A&A) activities throughout the RMF lifecycle.
- Develop and maintain RMF documentation including SSPs, Security Assessment Plans, Security Assessment Reports, POA&Ms, and authorization packages.
- Monitor NIST SP 800-53 Rev. 5 security control implementation and continuous monitoring activities.
- Track Plans of Action & Milestones (POA&Ms), risk acceptance decisions, and remediation activities.
- Support Risk Management Strategy updates, common control libraries, and Cybersecurity Supply Chain Risk Management (C‑SCRM) activities.
- Coordinate FISMA reporting, audit responses, corrective action plans, and cybersecurity compliance activities.
- Provide cybersecurity guidance to stakeholders regarding security requirements, documentation, and compliance obligations.
- Analyze cybersecurity metrics and identify trends, risks, and recommendations supporting executive decision making.
- Maintain program documentation and ensure compliance with NIH, HHS, NIST RMF, and federal cybersecurity policies.
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×