Summary: The Information Assurance Analyst strengthens the organization’s cybersecurity framework by developing cyber policies, Risk Management Framework (RMF) artifacts, and tactics, techniques, and procedures (TTPs). This role ensures compliance with USAF and DoD guidance, supports cloud transitions, and facilitates Authority to Operate (ATO) approvals.

Responsibilities:

Develop organizational and local cyber policies based on USAF/DoD guidance.

Tailor existing policies to new guidance.

Create an enterprise framework policy for the organization’s IT environment.

Produce RMF artifacts for ATO approvals.

Develop cybersecurity policies for cloud environments.

Create TTPs for risk analysis and threat hunting.

Contribute to technical reports and deliverables.

Qualifications:

Minimum 5 years of experience in Air Force IA and system accreditation, or equivalent with NIST security standards.

Expertise in Air Force Instruction (AFI) Series 33, Risk Management Framework (RMF), eMASS accreditation system, DISA STIGs

IAT Level II certification per DoD standards.

U.S. citizenship and minimum Secret security clearance.

Completion of annual training: Cyber Awareness, Security Administration, Derivative, Unauthorized Disclosure, Anti-terrorist, OPSEC, safety.

Desired Skills:

Certifications: CISM, CAP, CRISC.

Experience with cloud security frameworks (e.g., FedRAMP, DoD Cloud SRG).

Strong policy writing and documentation skills.

Knowledge of enterprise IT governance.