Cybersecurity Analyst - RMF & Vulnerability

Charleston, SC

$50.00-$55.00/Hour

Active Secret Clearance Required to Start

Join Moseley as a Cybersecurity Analyst supporting DoD systems in Charleston, SC, performing RMF, vulnerability, and STIG assessments using ACAS and enterprise cyber tools. Active Secret clearance required — TS/SCI preferred.Moseley is seeking a Cybersecurity Analyst to support cybersecurity assessment, compliance, and sustainment activities for DoD systems and networks. This position performs vulnerability scanning, STIG validation, RMF support, and security control assessments across Windows, Linux, virtual, and network environments. The analyst works closely with Information Assurance staff, system administrators, and program teams to maintain system security posture and support accreditation and continuous monitoring requirements. This role is ideal for a hands-on cybersecurity professional experienced with ACAS/Nessus scanning, STIG remediation, POA&M management, and eMASS documentation in DoD environments.

Responsibilities:

• Perform cybersecurity assessment and sustainment activities for DoD systems and subsystems
• Conduct vulnerability scans using ACAS/Nessus and related tools
• Analyze scan results and coordinate remediation actions
• Apply and validate DISA Security Technical Implementation Guides (STIGs)
• Perform STIG reviews across Windows, Linux, network devices, and virtual platforms
• Generate, update, and maintain POA&Ms and remediation tracking documentation
• Support Risk Management Framework (RMF) lifecycle activities
• Perform NIST 800-53 control validation and security control assessments
• Document and upload security artifacts and control evidence in eMASS
• Support ATO and continuous monitoring requirements
• Review SCAP results, STIG checklists, and compliance reports
• Support IAVA/IAVM response and vulnerability mitigation efforts
• Maintain IA compliance across Windows, Linux, and Cisco-based systems
• Support HBSS / ePO / Trellix security tools where applicable
• Review and validate scan uploads and asset compliance data
• Compile findings and prepare cybersecurity status reports
• Coordinate with system administrators, network engineers, and program security staff
• Provide clear technical documentation and assessment results

Qualifications:

• Active Secret Clearance Required
• Minimum 4 years of direct cybersecurity / information assurance experience supporting DoD programs
• CompTIA Security+ (Security+ CE) required
• Must meet DoD 8570 IAT Level II requirements
• Hands-on experience with vulnerability scanning tools (ACAS / Nessus)
• Experience implementing and validating DISA STIGs
• Experience creating and maintaining POA&Ms
• Experience supporting RMF and security assessment activities
• Working knowledge of:
  • Windows operating systems
  • Linux operating systems
  • Network and Cisco equipment
  • Experience with eMASS documentation and workflows
  • Strong written and verbal communication skills

Preferred Qualifications:

• CASP+, CEH, or other advanced cybersecurity certifications
• Experience supporting DoD cyber or enterprise network programs
• Experience with SCCM patching and compliance support
• Active Directory and Group Policy experience
• Experience with HBSS / ePO / Trellix platforms
• Experience with Splunk or enterprise log analysis tools
• Experience with SCAP, STIG Viewer, Vulnerator, or similar tools
• Virtualization experience (VMware, Hyper-V)
• Bachelor’s degree in Cybersecurity, Information Technology, or related field preferred
• Experience supporting TacMobile or P-8 ground system cybersecurity activities is a plus

Moseley Technical Services, Inc. is an AA/EEO/Veterans/Disabled Employer.

What to Expect

• Applicants selected for employment will be required to pass a pre-employment drug screening and background investigation, which may include education, criminal, and work history verifications.
• Accepted applicants will be eligible for benefits, including medical and supplemental insurance, and a 401(k) plan. Appreciation and gratitude for employees are hallspans of organizations with low turnover.
• Final position level and pay will be based on experience.

Resources

• To apply, send a resume to: resumesmoseleytechnical.com
• For more active job openings: Search Jobs
• For more information about Moseley, visit: About Us

Moseley Technical Services, Inc. (Moseley) was incorporated in 1994 to provide engineering and professional services to the aerospace/defense, manufacturing, government, and commercial industries. Our Mission is to deliver superior service to our customers and employees. We have been successful in our vision by building long-term relationships with customers and employees through integrity, transparency, and appreciation.

We stand by our 30-year-old commitment of “World Class Service. World Class Company.”