ATC Cybersecurity Auditor

Position Title: ATC Cybersecurity Auditor
Location: Tysons Corner, Virginia (Onsite)
Employment Type: Full-Time

About Cedelis
Cedelis is a cybersecurity-focused federal services firm delivering mission-critical support to intelligence and defense customers. Our teams operate in high-trust environments where rigor, discretion, and technical excellence are mandatory. Cedelis professionals are recognized for disciplined execution across classified networks, cybersecurity governance, and risk management programs supporting national security missions.

Cedelis is seeking an experienced Cybersecurity Auditor to support Approval to Connect (ATC) activities across classified and enterprise network environments. This position is responsible for independently assessing connection requests, validating compliance with applicable Intelligence Community and Department of Defense cybersecurity requirements, and advising government stakeholders on technical and operational risk prior to connection approval.

The successful candidate will apply deep knowledge of the NIST Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), and enterprise security controls while producing clear, defensible documentation to support authorization and connection decisions.

• Perform independent cybersecurity reviews of connection submissions to determine compliance with applicable policies, standards, and technical baselines.
• Analyze technical architectures, security control implementations, and supporting artifacts to identify vulnerabilities, control gaps, and residual risk.
• Coordinate directly with government personnel, system owners, and external organizations to clarify requirements and resolve deficiencies identified during ATC reviews.
• Produce formal assessment results, risk statements, and supporting documentation used in executive-level connection determinations.
• Identify recurring trends, systemic weaknesses, and opportunities to improve ATC processes, workflows, and documentation quality.
• Contribute to the development and maintenance of standard operating procedures, process guidance, and assessment templates supporting continuous monitoring and POA&M management.
• Operate with minimal oversight while maintaining strict adherence to security, quality, and reporting standards.

• Five (5) or more years of experience supporting cybersecurity assessment, auditing, or compliance activities within Department of Defense or Intelligence Community environments.
• Demonstrated experience applying NIST RMF, STIGs, and DoD/IC cybersecurity directives in operational settings.
• Strong analytical skills with the ability to assess complex technical environments and articulate risk clearly in both written and verbal form.
• Proven ability to work independently, exercise sound professional judgment, and manage multiple assessments concurrently.
• Experience authoring formal cybersecurity documentation, including assessment findings, procedures, and technical reports.

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field, or equivalent professional experience.

• Active Top Secret clearance with SCI eligibility is required.
• Ability to successfully complete a Counterintelligence Polygraph, if required by the customer.

• Must meet applicable DoD 8570 / 8140 requirements at the IAT Level III or higher.
• Relevant industry certifications (e.g., CISSP, CISM, Security+) are preferred.

Cedelis is an Equal Employment Opportunity employer. Employment decisions are made without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, or gender identity.