We have an opportunity for an experienced Cybersecurity Analyst to support our federal client portfolio. The successful candidate will have fluency in DoD RMF processes, cybersecurity documentation, application architecture, and strong technical and communication skills.

Responsibilities:

Conduct security assessments and audits of application architectures to identify vulnerabilities and ensure compliance with cybersecurity standards.
• Develop, implement, and maintain security policies, procedures, and guidelines in accordance with RMF, NIST, and DoD cybersecurity principles.
• Monitor and analyze security events and incidents using various security tools and platforms.
• Collaborate with development and operations teams to integrate security measures into the software development lifecycle (SDLC) and infrastructure as code (IaC) processes.
• Manage and respond to security incidents, including conducting root cause analysis and implementing corrective actions.
• Support the implementation and maintenance of security controls in AWS and Kubernetes (K8s) environments.
• Prepare and present security reports to stakeholders, including recommendations for improving security posture.
• Assist in the preparation and submission of security documentation for accreditation and certification processes.

Required

• Strong knowledge of RMF (Risk Management Framework), NIST (National Institute of Standards and Technology) cybersecurity principles, and DoD (Department of Defense) cybersecurity statutes and guidelines.
• Familiarity with application architecture and secure coding practices.
• Experience with cloud security, particularly in AWS (Amazon Web Services) environments.
• Understanding of containerization and orchestration technologies, especially Kubernetes (K8s).
• Proficient in security tools and platforms for monitoring, incident response, and vulnerability management.
• Strong analytical and problem-solving skills with attention to detail.
• Excellent communication skills, both written and verbal, with the ability to convey complex security concepts to technical and non-technical stakeholders.
• Ability to work collaboratively in a team-oriented environment.
• Must maintain or be eligible for Public Trust

Preferred

• Experience with security automation and orchestration tools.
• Knowledge of DevSecOps practices and integration of security into CI/CD pipelines.
• Familiarity with other cloud platforms such as Azure or Google Cloud Platform (GCP).
• Experience in developing and delivering security training and awareness programs.
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• AWS Certified Security - Specialty
• Certified Cloud Security Professional (CCSP)
• Certified Kubernetes Security Specialist (CKS)
• CompTIA Security
• Federal Consulting Industry Experience Preferred

#LI-Remote

Perks of working at NetImpact Strategies

• Your health comes first - we offer comprehensive medical, dental, & vision insurance that starts the first of the month after you join the team
• Invest in your future - 401(k) Plan - Immediately vested employer contributions; no matching required
• Work hard, play hard - we offer a generous Paid Time Off (PTO) policy and observe ALL ten (10) federal holidays
• Pawsitively pawesome - Pet Insurance (because our little critters are part of our families, too!)
• Invest in your education - Tuition reimbursement, internal training programs, & company-sponsored industry certifications
• Be part of a dynamic and collaborative work environment recently ranked by The Washington Post as a Top Work Place in 2019 & 2020!
• Have fun and celebrate and give back - Team building activities, community volunteering, quarterly HQ days, & an offsite annual awards banquet

ABOUT US

NetImpact Strategies Inc. (NetImpact) has been a Trusted Advisor driving impact through digital transformation for the Federal Government for over a decade. We solve complex problems with innovation and agility to create meaningful, transformative, and enduring change. As Trusted Advisors, NetImpact professionals partner with customer agencies to deliver solutions that empower them to not only meet their missions but also realize their strategic vision through agile, outcome-focused solutions addressing both strategic and tactical requirements. We design and implement comprehensive, tailored solutions that are both mindful of the client's culture and organizational dynamics. NetImpact's core values and commitment to a customer and results-oriented delivery approach has propelled our growth and enabled us to deliver impactful value across Strategic Consulting, Process Automation, Cloud, DevSecOps, Data and Analytics, and Cyber Security for the Federal Government.

ACCESSIBILITY NOTE

NetImpact Strategies is committed to complying with all applicable provisions of the Americans with Disabilities Act, as amended ("ADA"), and applicable state and local laws. It is NetImpact's policy not to discriminate against any qualified person or applicant with regard to any terms or conditions of employment on the basis of such individual's disability. Consistent with this policy of non-discrimination, NetImpact will provide reasonable accommodations to an individual with a disability, as defined in the ADA or applicable law, who has made NetImpact aware of his/her disability, unless doing so would cause undue hardship to NetImpact. If you are an applicant and need reasonable accommodation when applying for job opportunities within NetImpact, or request reasonable accommodation to utilize NetImpact's online employment application, please contact careers@netimpactstrategies.com.

EQUAL OPPORTUNITY EMPLOYER

NetImpact is committed to the development of a creative, diverse, and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at NetImpact will be based on merit, qualifications, and abilities. NetImpact does not discriminate against any person because of race, color, creed, religion, sex (including gender identity, sexual orientation, and pregnancy), marital status, national origin, disability, age, veteran status, genetic information or any other characteristic protected by federal, state, and local laws (referred to as "protected status").