Information Security Analyst - Journeyman

SMX is seeking an Information Security Analyst to support the Navy's Risk Management Framework (RMF) processes. You'll help achieve and maintain Authority to Operate (ATO) for all supported systems, conduct network monitoring, vulnerability management, incident response, security enforcement, and threat analysis, and perform compliance auditing.

We're looking for a collaborative Cybersecurity Analyst with a strong foundation in the following areas:

• DoD information systems (IS), network administration, systems administration, and cybersecurity
• IS management
• Enterprise Mission Assurance Support Service (eMASS)
• Navy’s RMF processes and POA&M tracking and resolution
• Navy’s Security Assessment and Authorization (SAA) policies
• Knowledge of system functions, security policies, and technical security safeguards
• Assessing vulnerabilities within DoD Infrastructure and developing mitigation plans
  
  

In this role, you will design, implement, and engage in projects involving legacy, current, and next-generation physical security, cybersecurity, telecommunications, and electronics systems for Navy Region Southwest (NRSW). You'll be responsible for maintaining compliance with RMF and other Department of Defense (DoD) cybersecurity standards, as well as managing daily vulnerability assessments and remediation tracking across various DoD IT systems and infrastructure.

Direct experience with Navy Electronic Security Systems (NESS) Lenel systems, including security cameras, network switches, routers, and Voice over Internet Protocol (VoIP), is highly desired. The ideal candidate will apply their technical expertise to support cyber integration efforts, ensuring alignment between legacy systems and state-of-the-art technologies across multiple DoD entities.

This is a hybrid role with the primary work location at a government site in San Diego, CA.

A DoD secret security clearance is required which requires US citizenship for work on DoD contracts.

Essential Duties & Responsibilities

• Candidate to support design, implementation and management of security systems within
• Candidate to prepare, categorize, select, implement, assess and authorize risks per National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) guidelines
• Candidate will perform duties to assist with Assured Compliance Assessment Solution (ACAS) scans, Cyber Security Risk Management Framework (RMF)
• Support day-to-day vulnerability management and remediation tracking
• Help prepare and update security documentation including POA&Ms and ATO artifacts
• Provide basic incident response support and cyber hygiene practices
• Candidate may assist with technical documentation, network diagrams, inventory control documentation, and security documentation
• Assist in maintaining compliance with RMF and other DoD cybersecurity frameworks
• collaborate with Government Project Leads (GPL) and Security Managers to integrate security measures into systems throughout the development lifecycle
• Assess existing and potential system vulnerabilities and propose mitigation strategies
  
  

Required Skills & Experience

• Active Security Clearance Required: Secret
• BA/BS in Computer Science or an IT discipline
• No degree may be substituted with plus six (6) additional years of related experience or
• Associate degree plus four (4) years of related experience
• Experience with NIST RMF, NIST 800-53, STIGs protocols and guidelines
• DoD 8140 compliant certification: minimum CompTia Security
• 3 years of relevant DoD cybersecurity or IT security experience
• Knowledge of Windows operating environments and Microsoft Windows Server 2008/2012
  
  

Desired Skills & Experience

• Masters in Computer Science, Information Systems, Cybersecurity, or similar
• Assured Compliance Assessment Solution (ACAS) Administrator highly desired
• Enterprise Mission Assurance Support Service (eMASS) administrator highly desired
• Knowledge of Local Area Network (LAN) infrastructure and Architectures
• Understanding of C5I systems
• 8-12 years of relevant DoD cybersecurity or IT security experience
  
  

Application Deadline: July 28, 2025

#CJPOST

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:

$86,000—$143,200 USD

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

SMX is an Equal Opportunity employer including disabilities and veterans.

Selected applicant may be subject to a background investigation and/or education verification.