RMF Cybersecurity Analyst (Windows Systems)

i3 is seeking an RMF Cybersecurity Analyst with Windows expertise to support an Army program focused on Risk Management Framework (RMF) compliance and continuous monitoring of Windows-based systems.

This position is cybersecurity-focused, responsible for vulnerability scanning, remediation, STIG compliance, and RMF artifact management across enterprise Windows environments.

The selected candidate will work closely with cybersecurity, engineering, and operations teams to ensure systems meet DoD RMF requirements, maintain compliance, and support Authorization to Operate (ATO) objectives.

Candidates must possess a United States SECRET security clearance.

RMF & Cybersecurity (Primary Focus)

• Perform vulnerability scanning using Nessus (ACAS) on Windows systems.
• Analyze scan results and conduct vulnerability triage, prioritization, and reporting.
• Execute and track vulnerability remediation efforts using enterprise tools (e.g., MECM/SCCM).
• Develop, maintain, and manage Plan of Action and Milestones (POA&M) artifacts.
• Apply and validate DISA STIGs for Windows Server and Windows 10/11 systems.
• Support RMF 2.0 lifecycle activities, including:
• Control implementation
• Continuous monitoring
• Security control validation
• Maintain and update eMASS artifacts, including control implementations, vulnerabilities, and system status.
• Support Independent Security Assessments (ISA) and ATO sustainment activities.
• Ensure compliance with NIST 800-53 / CNSSI 1253 controls and DoD cybersecurity policies.
• Support implementation of Zero Trust principles within Windows environments.

Windows Systems Support (Secondary / Enabling Role)

• Administer and maintain Windows Server and workstation environments.
• Manage and support Active Directory (AD), including:
• Users, Groups, OUs
• Group Policy Objects (GPOs)
• Execute patching and configuration management using tools such as MECM/SCCM.
• Perform and validate system hardening in accordance with STIG requirements.
• Support CAC/Smartcard PKI authentication and certificate lifecycle management.
• Assist with troubleshooting systems that fail compliance or patch baselines.
• Support backup and recovery operations in secure environments.
• Collaborate with DevSecOps teams to integrate security into operational workflows.

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field with 6+ years of experience, or 10+ years equivalent experience.
• Strong hands-on experience with:
• Nessus / ACAS vulnerability scanning
• STIG implementation and validation (Windows)
• POA&M development and management
• RMF processes and continuous monitoring
• Experience working within DoD RMF environments (ATO lifecycle).
• Familiarity with:
• NIST 800-53 controls
• eMASS or equivalent RMF tools
• Experience administering Windows Server and Active Directory environments.
• Experience with enterprise patching/remediation tools (MECM/SCCM).
• Must meet DoD 8140 (IAT Level II or higher) requirements (e.g., Security+).
• U.S. Citizenship required.
• Active Secret clearance required. Must be able to maintain the security clearance required for this position.

Desired/Preferred:

• Experience supporting Army or DoD enterprise environments.
• Familiarity with:
• HBSS (or successor tools)
• Endpoint security platforms
• Experience with PKI, certificate authorities, and CAC authentication.
• Experience with NetApp or enterprise storage systems.
• Familiarity with automation and scripting (PowerShell).
• Understanding of Zero Trust architecture principles.

Knowledge/Skills

• Knowledge of office administration and procedures.
• Exceptional judgment capabilities and relationship management skills.
• Excellent communication, teamwork, and client service skills; ability to clearly communicate in discussions and written documents, and to deliver feedback clearly and tactfully.
• Interact with a diverse array of customers and staff in a professional and courteous manner.
• Work independently with accountability for accurate and complete results.
• Be extremely organized and exceptionally detail oriented.
• Work well both independently and in a team environment.
• Be energized by a fast-paced work environment.
• Must be able to communicate with others effectively.
• Analyze information and respond appropriately.
• Manage time wisely and prioritize tasks.
• Provide superior customer service. 
• Multi-task in a pleasant manner.
• Work well under pressure.

PHYSICAL DEMANDS

• The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
• While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; walk; handle or feel; and reach with hands and arms.
• The employee is occasionally required to sit; climb or balance; and stoop, kneel, crouch or crawl. The employee must be able to lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.
• Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception and ability to adjust focus.
• Regular i3 hours are 8:00 a.m. - 5:00 p.m. Monday-Friday, however, additional hours may be required on occasion. Regular and punctual attendance is required.

i3 is a technically diverse, 100% team member owned business, headquartered in Huntsville, Alabama specializing in missile and aviation systems engineering and logistic services, electronic warfare and electromagnetic effects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation. We have established a broad offering of products and capabilities collectively providing decades of experience supporting the full complement of DoD military services, Missile Defense Agency, National Aeronautics and Space Administration, and a variety of other Government organizations and private industry customers.

Perks of being a team member owner include:

• Long-term financial security
• Higher job satisfaction
• Greater job security
• Personal and professional growth
• Great company culture

Other outstanding benefits:

• Excellent insurance coverage
• 401(k) match
• Generous PTO
• Health and wellness incentives
• Tuition and certification reimbursement
• Countless opportunities to give back to the community through i3 Cares

We work hard. We compete hard. We play hard. Apply now to join us!