Cyber Security Associate (Remote)
US-Remote
Careers (External)
Req #: 7904
Type: Full-Time
|
|
||||||||||
|
|||||||||||
Overview: GovCIO is currently hiring for a Cyber Security Analyst 1 to support foundational cybersecurity and ATO activities, including assisting with documentation, evidence collection, and Continuous Monitoring tasks across VA systems. This position will be a fully remote within the United States position. Responsibilities: * Assist in preparing and updating foundational ATO documentation under senior staff guidance (e.g., SSP sections, IRP updates, PTA/PIA drafts, CMP updates). * Support tracking and maintenance of ATO packages in ServiceNow CAM, including uploading artifacts and organizing evidence. * Support Continuous Monitoring tasks using ServiceNow CAM, updating dashboards with supervision. * Help coordinate routine security vulnerability scanning requests and compile scan outputs for review. * Participate as a note‑taker or supporting analyst during tabletop and functional IRP/ISCP/DRP exercises. * Assist with gathering data for POA&M updates and maintain documentation libraries. * Conduct initial reviews of security findings and escalate issues to senior analysts. * Help with administrative tasks related to audit preparation, evidence gathering, and compliance reporting. * Collaborate with cross‑functional teams by collecting information needed for engineering, privacy, or security reviews. * Learn and apply fundamental cybersecurity frameworks, VA security processes, and best practices. Qualifications: Required Skills and Experience: * Bachelor's degree in Computer Science, Cyber Security, Information Systems, or similar; OR equivalent experience or certifications. * 0-2 years of cybersecurity experience (internship, entry-level role, or coursework projects acceptable). * Familiarity with RMF, NIST SP 800-53 security controls, creating and updating artifacts and FISMA security documents, control implementation details, and Plan of Action and Milestones (POA&M). * Basic understanding of vulnerability scanning tools, ATO processes, or GRC workflows. * Foundational understanding of security concepts such as risk, compliance, configuration management, and incident response. * Willingness to learn VA GRC tools such as eMASS and ServiceNow CAM. * Strong attention to detail and documentation skills. * Effective verbal and written communication skills. Clearance Requirement: Suitability/Public Trust * Eligibility Requirements: Candidates must be U.S. citizens or permanent residents and have resided in the United States for a minimum of three (3) years. Preferred Skills and Experience * Experience with Jira, Confluence, and Microsoft 365. * Exposure to federal cybersecurity programs a plus. * Entry-level certifications: Security+, CAP (in progress), or similar. * Interest in AI‑assisted GRC tooling and automation. Regulation Knowledge * FISMA, FedRAMP (conceptual understanding) * NIST SP 800‑53 (awareness level) * NIST SP 800‑37 RMF basics * VA Directive 6500 (introduction to concepts)
Share this job:
