Cyber Security Analyst III

Description

Position Summary 

Northern Technologies Group (NTG) is seeking a mission-focused Cybersecurity Analyst III to support cybersecurity and risk management operations within the Department of Defense (DoD) Chief Information Officer’s SAP IT Cybersecurity program. This role plays a key part in evaluating system security, supporting the RMF lifecycle, and helping programs achieve and maintain Authorization to Operate (ATO) within highly classified environments.

Essential Duties and Responsibilities

• Review and analyze RMF documentation and artifacts, including:
  • Security Assessment Plans (SAPs)
  • System Security Plans (SSPs)
  • Plan of Action and Milestones (POA&Ms)
  • Risk Assessment Reports (RARs)
• Assist the Security Control Assessor (SCA) in validating the implementation of cybersecurity controls and inherited policies.
• Support the assessment and authorization (A&A) process by evaluating system security posture and identifying gaps.
• Document and track program cybersecurity compliance and progress in tools such as eMASS.
• Participate in Continuous Monitoring (CONMON) efforts by reviewing log management, IV&V results, and testing artifacts.
• Apply STIG checklists and cybersecurity best practices to validate technical implementation and system hardening.
• Coordinate with Information System Security Managers (ISSMs), program security teams, and system owners to prepare authorization packages.
• Support the standardization of templates, SOPs, and compliance documentation.
• Contribute to the development of dashboards, reports, and cybersecurity scorecards for senior leadership.

Requirements

Minimum Qualifications (Knowledge, Skills, and Abilities)

• Active Top Secret/ SCI (TS/SCI) federal security clearance with eligibility for SAP access
• Bachelor’s degree in cybersecurity or a related technical discipline
• Minimum of 10 years of related cybersecurity experience
• DoD 8570.01-M compliant certification (e.g., CISSP, CASP+, CISM, or equivalent IAT/IAM Level III)

PREFERRED QUALIFICATIONS

• Proven track record supporting classified DoD or Intelligence Community missions
• Author or contributor to government standards, directives, or published technical frameworks
• Strong policy interpretation skills and experience drafting strategic-level documentation
• Deep knowledge of RMF, NIST, JSIG, and DoD cybersecurity or architecture frameworks
• Demonstrated ability to lead integrated teams across government, contractor, and mission partner environments
• Experience advising senior leadership (e.g., SES, Flag Officer, or Program Executive Office level)

Physical Demands and Work Environment 

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions.

While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers, handle or feel objects, tools, or controls. The employee is occasionally required to stand; walk; sit; and reach with hands and arms. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this position include close vision, distance vision, and the ability to adjust focus. The noise level in the work environment is usually low to moderate. 

Northern Technologies Group is an equal opportunity employer. We do not discriminate based on race, color, religion, sex, national origin, disability, age, or any other protected status under federal, state, or local law.

Travel

May require occasional travel within the National Capital Region (NCR) and limited CONUS travel

Shift

• Monday through Friday, 8-hour shifts with core hours of 0900–1500
• On-call response may be required for critical system issues or classified facility access

Note

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. This document does not create an employment contract, implied or otherwise, other than an “at will” relationship.