Benefits:
401(k) matching
Competitive salary
Health insurance
Paid time off
About this Role:
We are seeking a Cybersecurity Sr. IT Administrator / Systems Analyst to provide enterprise cybersecurity system administration, compliance support, and technical analysis for a federal cybersecurity program supporting HHS. This role supports cybersecurity governance, compliance, and risk management activities across HHS IT systems, including cloud-based and on-prem environments. The ideal candidate brings extensive hands-on system administration experience, cyber risk and compliance expertise, and strong understanding of federal cybersecurity mandates.
This position is part of a high-visibility cybersecurity modernization initiative and requires experience working with FISMA, NIST SP 800-53, FedRAMP, ISCM, CISA directives, and controlled unclassified information (CUI) protections.
Key Responsibilities:
Cybersecurity System Administration & Analysis
Administer, configure, and support cybersecurity tools and systems (e.g., SIEM, vulnerability scanners, endpoint protection, cloud security services).
Support system security engineering, control implementation, and security configuration baselines.
Troubleshoot security system issues and support patching, configuration management, and system maintenance.
Analyze system audit logs, vulnerabilities, and risk findings and coordinate remediation actions.
Cybersecurity Governance & Compliance
Support Risk Management Framework (RMF) activities including control assessments, SSP updates, POA&M tracking, and continuous monitoring.
Ensure compliance with FISMA, NIST SP 800-53, FedRAMP, HVA protections, C-SCRM, and HHS cybersecurity policies.
Assist ISSOs with accreditation documentation, ATO packages, and audit readiness.
Support compliance tracking, dashboard reporting, and FISMA metric development.
Cyber Risk Management
Conduct system risk assessments and security impact analyses.
Support Enterprise Risk Management (ERM) integration and risk prioritization.
Monitor information system continuous monitoring (ISCM) metrics and develop risk mitigation strategies.
Provide technical input on supply chain risk (C-SCRM), cloud security, and FedRAMP compliance.
Cyber Program Support & Coordination
Collaborate with Cyber Affairs workstreams to support stakeholder communications, federal coordination, and data analysis.
Participate in cybersecurity strategic planning and modernization initiatives.
Support process improvement, quality assurance, and Section 508 compliance for documentation and reporting.
Prepare and deliver weekly reports, cybersecurity briefings, and technical presentations.
Security Requirements
Adhere to federal cybersecurity regulations including:
FISMA, NIST SP 800-53, NIST SP 800-37
FedRAMP security controls for cloud systems
Privacy Act and CUI handling guidance
Mandatory 1-hour breach reporting procedures
Qualifications and Skills:
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
8+ years of experience in IT system administration, cybersecurity operations, or system security analysis.
Experience supporting federal cybersecurity programs.
Strong working knowledge of:
NIST 800-53 and RMF
FISMA compliance and federal cybersecurity reporting
FedRAMP cloud environments
CUI handling and Privacy Act requirements
Hands-on experience with one or more tools: Splunk, Tenable, Qualys, Tanium, ServiceNow, AWS/GCP/Azure Security.
Excellent communication and technical documentation skills.
Must be able to obtain and maintain a Public Trust clearance/Must be a US citizen.
Desired Skills and Competencies:
Active certifications such as CISSP, Security+, CEH, CISM, PMP, AWS Security Specialty, or Microsoft/Azure Administrator.
Experience supporting cybersecurity programs at HHS, DHS, VA, or other federal agencies.
Experience with audit readiness, ISSO support, A&A documentation.
Familiarity with Zero Trust Architecture (ZTA) and CISA cybersecurity guidance.
Flexible work from home options available.