Security Control Assessment Mid-Level Cybersecurity Analyst (REMOTE)

Koniag Data Solutions, a Koniag Government Services company, is seeking Security Control Assessment Mid-Level Cybersecurity Analyst to support KDS and our government customer in Alexandria, VA. This is a Remote opportunity.

We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

Koniag Data Solutions (KDS), a Koniag Government Services company, is seeking a Mid-Level Cybersecurity Analyst specializing in Security Control Assessments (SCA) to support our federal government clients. The ideal candidate will have experience in conducting thorough security assessments, analyzing security controls, and providing detailed recommendations for security improvements.

Essential Functions, Responsibilities & Duties may include, but are not limited to:
The Mid-Level Cybersecurity Analyst will be responsible for:

• Conducting comprehensive security control assessments following NIST guidelines
• Performing security testing and evaluation of systems and applications
• Documenting assessment findings and preparing detailed reports
• Analyzing system security plans and associated security documentation
• Evaluating security controls and their implementation
• Supporting Authorization to Operate (ATO) processes
• Conducting vulnerability assessments and penetration testing
• Assisting in the development of Plans of Action and Milestones (POA&Ms)
• Participating in security working groups and technical meetings
• Collaborating with system owners and stakeholders
• Supporting continuous monitoring activities
• Maintaining assessment documentation and evidence
• Providing recommendations for remediation of security findings

Education and Experience:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
• 5+ years of experience in cybersecurity
• 3+ years of direct experience conducting security control assessments
• Experience with federal information security requirements and guidelines

Required Skills and Competencies:

• Deep understanding of NIST SP 800-53 security controls
• Experience with Risk Management Framework (RMF)
• Knowledge of Federal Information Security Management Act (FISMA) requirements
• Proficiency in security assessment and authorization processes
• Experience with vulnerability scanning tools (Nessus, Qualys, etc.)
• Strong analytical and problem-solving skills
• Excellent documentation and technical writing abilities
• Knowledge of common security tools and technologies
• Understanding of cloud security concepts
• Experience with security documentation review
• Strong communication and interpersonal skills
• Ability to work independently and as part of a team
• Proficiency in Microsoft Office suite
• Experience with security assessment tools and methodologies

Desired Skills and Competencies:

• Security+ or higher cybersecurity certification
• CISSP, CISA, or similar professional certification
• Experience with FedRAMP assessment processes
• Knowledge of CMMC requirements
• Familiarity with cloud service providers (AWS, Azure, GCP)
• Experience with automated security assessment tools
• Background in federal government contracting
• Knowledge of DevSecOps practices
• Experience with continuous monitoring programs
• Experience with security compliance frameworks
• Prior military or government experience
• Knowledge of privacy requirements and controls

Our Equal Employment Opportunity Policy
The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.

The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations.

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com .

Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

• Job Family IT, Cyber Security, Network Systems
• Job Function Cyber Security Operations Analyst