We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

IA/Cyber Security Analyst at Concept Plus. Location Information: Remote (United States). . About Concept Plus. Concept Plus is a growing consulting firm headquartered in Fairfax, VA. We are an Oracle Gold Partner, offering deep technical expertise, combined with business insights and an experienced team focused on providing technical solutions for our clients. We are proud to have been recognized as one of the "25 Most Powerful Oracle Solution Providers" in the area! We offer great benefits including competitive pay, comprehensive health insurance, dental and vision insurance, paid life insurance, paid time off, 11 paid holidays, bonuses, tuition reimbursement, unlimited training, and the opportunity to work in a collaborative, flexible, innovative environment! For additional information about our dynamic organization, please visit our website. at www.conceptplus.com. . About the role. Concept Plus is seeking a mission-driven and detail-oriented IA/ Cyber Security Analyst to join our dynamic cybersecurity team supporting a critical software modernization initiative for our client. As a Cyber Security Analyst, you'll help protect and secure national defense systems by ensuring compliance with the Risk Management Framework (RMF) and maintaining accreditation packages for mission-critical assets. You’ll work closely with system owners, security engineers, assessors, and program stakeholders to ensure that sensitive systems remain secure, resilient, and aligned with client cybersecurity regulations.. This role operates within a collaborative Agile and . DevSecOps. framework to ensure secure, timely, and iterative delivery of capabilities. The ideal candidate thrives in a fast-paced, evolving environment and brings a deep understanding of both business processes and technological integration.. What you'll do. You will be working with a skilled team in an agile environment to support an application modernization effort where you will be expected to:. Work closely with technical teams to implement secure system improvements that meet DoD cybersecurity standards.. Monitor and evaluate project progress, providing actionable reports to leadership and government officials.. Communicate with team, customers, and stakeholders in a clear, concise, timely, and professional manner.. Manage and maintain security authorization packages within the DoD RMF lifecycle. Ensure the confidentiality, integrity, and availability of systems through compliance with NIST 800-53 controls and DoDI 8500 series. Draft and maintain documentation including System Security Plans (SSPs), POA&Ms, and Continuous Monitoring strategies. Support system assessments, vulnerability scanning, and remediation efforts using tools like SonarQube, Checkmarx, Trivy, Dependency Track, eMASS, and Nessus. Support system assessments, vulnerability scanning, and remediation efforts relating to DISA STIGs. Interface with government security officials (e.g., ISSMs, AO representatives) to support audits, inspections, and reviews. Coordinate security engineering input into system designs and control implementation. Track and respond to cybersecurity incidents and ensure timely reporting and recovery efforts. Participate in Agile/DevSecOps development cycles, ensuring security is integrated from concept to deployment. Assist with personnel security awareness, training, and insider threat mitigation. Qualifications. US Citizenship. Interim Secret or Secret Clearance required to start. Bachelor’s degree in Information Science, Engineering, Computer Science, Technology Management, or a degree in a closely related field; An advanced degree may substitute for two years of required experience. 3+ years of experience in Cyber Security, preferably within a DoD or government contracting environment.. Industry certification such as Security+ CE, CISSP, CISM, or CAP (Security+ is a DoD 8570 baseline requirement). Hands-on experience with RMF steps, security control implementation, and continuous monitoring. Proficient with tools such as SonarQube, Checkmarx, Trivy, Dependency Track, eMASS, Nessus, and DISA STIGs. Familiarity with Air Force cybersecurity policies and standards, including AFMAN 17-1301. Familiarity with Federal cybersecurity compliance work. Very good verbal and written communication skills. Concept Plus is an Affirmative Action/Equal Opportunity Employer. As such, we will give your application full consideration without regard to your race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, gender identity, or any other classification protected by federal, state, or local law.. .