SU
Sunshine Enterprise USASecurity Analyst – Project Lead
Senior Security Analyst at Sunshine Enterprise managing IRS compliance initiatives. Overseeing readiness for IRS Safeguards Review and providing technical guidance.
About the role
- Lead the implementation, management, and continuous monitoring of cybersecurity controls for the DCMA Computer-Aided Facility Management (CAFM) SaaS system, ensuring full compliance with FedRAMP Moderate, DoD RMF, and NIST 800-53 standards
- Conduct ongoing vulnerability assessments, risk analyses, and security audits of cloud and on-premises components, identifying weaknesses and formulating mitigation strategies
- Develop and maintain cybersecurity documentation including System Security Plans (SSPs), policies, procedures, Plan of Action & Milestones (POA&Ms), and incident response plans
- Support the development, submission, and maintenance of Authority to Operate (ATO) packages in alignment with DCMA, DoD, and federal requirements
- Coordinate and conduct security testing (penetration tests, vulnerability scanning, compliance checks) using industry-standard tools and methodologies, documenting results and remediation actions
- Collaborate with DevSecOps, software development, and system administration teams to ensure secure design and implementation of all technical solutions and integrations
- Manage user access controls, account provisioning, and privileged access in compliance with least privilege and zero trust principles
- Lead incident response efforts, performing security event investigation, analysis, and reporting; coordinate with government stakeholders to report incidents in line with contractual requirements
- Monitor threat intelligence feeds, emerging vulnerabilities, and cyber risk advisories; provide recommendations to enhance system defenses
- Conduct security awareness training and ensure user compliance with established security standards, policies, and procedures
Requirements
- Bachelor’s Degree in Cybersecurity, Information Assurance, Computer Science, Information Systems, or a related technical field
- Minimum 7 years’ experience in cybersecurity analysis
- At least 3 years supporting FedRAMP, DoD RMF, or NIST 800-53 compliant environments
- Proven expertise in vulnerability management, incident response, risk assessment, and compliance monitoring within cloud-based SaaS or federal IT environments
- Direct experience supporting system assessment and authorization (ATO) processes, including development and maintenance of RMF artifacts
- Strong knowledge of secure architecture principles, security incident management, and cloud security best practices
- Familiarity with security tools such as Splunk, Tenable, Nessus, McAfee, or similar platforms
- U.S. citizenship required (Special Requirements/Security Clearance)
- Preferred: Master’s Degree in Cybersecurity, Information Assurance, or related discipline
- Preferred: Experience supporting DCMA, DoD, or other federal CAFM, asset management, or facilities management SaaS solutions
- Preferred: In-depth knowledge of Authority to Operate (ATO) and FISMA/FedRAMP accreditation processes
- Preferred: Experience with STIGs, continuous monitoring, and penetration testing in federal environments
- Preferred: Relevant industry certifications (CISSP, CISM, CCSP, CompTIA Security+, CASP+, GSEC)
Benefits
- Medical, Dental & Vision Coverage
- Wellness Program
- 401(k) Matching
- Disability (Short Term & Long Term)
- Employee Assistance Program
- Life Insurance
- Education & Training
- Generous Leave Policy (11 Federal Holidays, PTO, and Military Leave)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
SO
Senior Security Analyst managing and monitoring security solutions, including firewalls and antivirus. Involves vulnerability analysis, incident response, and compliance with security policies.
IC
ISA CybersecuritySecurity Analyst, Tier 2 – Protection Services
Security Analyst enhancing cybersecurity for clients through investigations, awareness programs, and incident response. Join ISA Cybersecurity, a leading firm in Canada with three decades of expertise.
BU
Bundesdruckerei-GruppeIT Security Analyst
IT Security Analyst protecting identities and data within the Blue Team at Bundesdruckerei. Involved in incident response and security monitoring in a dynamic IT environment.
CA
Cooperativa Central AilosCorporate Security Analyst – Fraud Prevention
Analista de Segurança Corporativa responsible for fraud prevention analysis and governance at Central Ailos. The role involves data analysis to mitigate financial fraud risks.
OC
ORAEX CLOUD CONSULTINGAnalista de Segurança da Informação – Júnior
Junior Information Security Analyst at ORAEX consulting focusing on network security and vulnerability assessment. Requires a background in IT and cybersecurity - related studies.
WI
Woods Hole Oceanographic InstitutionDesktop Support, Security Analyst
Desktop Support & Security Analyst handling technical support and cybersecurity for the WHOI. Balancing responsibilities between End - User Technology support and Information Security operations while ensuring user functionality.
WA
WattpadIT & Security Analyst
IT & Security Analyst managing IT operations and security for WEBTOON Entertainment in Los Angeles. Collaborating with global security teams and overseeing user access and security systems.
BP
Bellinati PerezInformation Security Analyst – Mid-level
Information Security Analyst managing critical governance, risk, and compliance topics. Leading incident responses and security policy development in a hybrid work model.
UH
upConsult <search - select - hire>Cyber Security Analyst, 80–100%
Cyber Security Analyst enhancing cyber resilience for the Swiss financial sector with a focus on threat intelligence. Collaborating closely with partners and regulatory agencies to safeguard against cyber threats.