No longer accepting applications
Sr. Security RMF Audit Analyst
Oasys InternationalCharlotte, NC, United States5 days ago
Job type
- Full-time
Job descriptionAdvanced knowledge of NIST RMF, NIST SP 800-37, 800-53, DHS 4300A, and FISMA compliance. Experience preparing and maintaining RMF ATO documentation and conducting system assessments. Familiarity with Security Information and Event Management (SIEM) platforms for log analysis and incident monitoring. Proficient in evaluating and documenting security configurations and technical implementations for federal systems. Strong understanding of cybersecurity audit workflows, control testing, and risk-based prioritization of vulnerabilities. Excellent writing and communication skills, capable of producing technical documentation and executive summaries. Experience in Agile or DevSecOps environments, with a strong understanding of security integration within CI / CD pipelines. Bachelor's or Associate's degree in Computer Science, Math, Information Technology, Engineering, or related field. Two (2) years of directly relevant experience may substitute for one (1) year of formal education. Minimum of five (5) years of experience in Information security with auditing and IT controls design experience. Minimum of five (5) years of experience with Security Information and Event Management (SIEM). Minimum of five (5) years of experience in the risk management framework. Hands-on experience with Active Directory, Windows / UNIX systems, and relational databases in secure environments. Previous support of federal government enterprise systems or DHS / DOD programs is strongly preferred. U.S. citizenship required Must have an active DoD Secret Clearance. CompTIA Security+ Additional certifications (Network+, AWS Certified Cloud Practitioner, Microsoft Azure Fundamentals, Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), ITIL Foundation, TOGAF, or other cybersecurity architecture certifications) are a plus. Elizabeth City, NC - Hybrid North Carolina Region - Must be able to go on-site at least three days a week
Who We Are : Oasys International, LLC (Oasys) is a rapidly expanding firm that has been recognized on Inc. 5000 magazine's list of the fastest-growing companies for five consecutive years. We are a dynamic organization dedicated to providing world-class technology consulting services through our team of expert technologists, consultants, engineers, and subject matter experts. At Oasys, we prioritize continuous learning, a healthy work-life balance, and a collaborative work environment. Our culture is merit-based, recognizing and rewarding performance and fostering a supportive and social atmosphere.
Position Summary :
Oasys is seeking a Sr. Security RMF Audit Analyst to support the United States Coast Guard (USCG) at the Aviation Logistics Center (ALC)-Information Systems Division (ISD). The Sr. Security RMF Audit Analyst will lead audit preparation and execution, support continuous RMF lifecycle activities, and oversee compliance with federal cybersecurity requirements across on-premises, virtual, and cloud-hosted systems.
This position will serve as a senior technical advisor in security compliance efforts, guiding cross-functional teams through POA&M development, control remediation, ATO documentation, and continuous monitoring in accordance with NIST 800-53, DHS 4300A, and FISMA standards.
Primary Responsibilities :
- Oversee the Risk Management Framework (RMF) lifecycle, including assessment, authorization, and continuous monitoring across all ALC-ISD systems.
- Lead and coordinate internal and external cybersecurity audits, including pre-audit readiness assessments and post-audit remediation tracking.
- Validate the implementation of security controls (NIST SP 800-53 Rev. 5) and ensure they are effectively documented within System Security Plans (SSPs), Security Assessment Reports (SARs), and related artifacts.
- Design and implement vulnerability management strategies, assess threat vectors, and develop comprehensive Plans of Action and Milestones (POA&Ms).
- Analyze cyber risks and provide guidance on remediation strategies aligned with DHS policy and evolving cybersecurity threats.
- Perform and document risk assessments, penetration testing coordination, and impact analyses to evaluate the security posture of information systems.
- Collaborate with Security Control Assessors (SCAs), engineers, ISSOs, and DevSecOps teams to ensure audit alignment with enterprise system modernization efforts.
- Manage and maintain audit packages, compliance dashboards, and evidence repositories using platforms like Jira, Confluence, and SharePoint.
- Assess and validate configurations of infrastructure (e.g., Windows, Linux, databases, Active Directory) for compliance with security benchmarks (e.g., DISA STIGs, CIS).
- Draft and update security-related documentation including SOPs, incident response plans, and security test procedures.
- Serve as a subject matter expert to stakeholders on RMF best practices, ATO sustainment, and security documentation management.
- All other duties as assigned by management.
Skills / Qualifications :
Education / Experience Requirements :
Clearance :
Certification Requirement
Work Location :
Oasys is proud to be an equal opportunity employer for all protected groups, including protected veterans and individuals with disabilities.
Create a job alert for this search
Sr Security Analyst • Charlotte, NC, United States
Related jobs
Work with / accompany physician at all times.Document information in EHR as dictated by provider in exam room.Identify and relay information regarding test, procedures, etc.Order all labs, imaging, p...Show moreLast updated: 30+ days ago
We are seeking a highly skilled Senior Data Analyst to join our Financial Crimes / Anti-Money Laundering (AML) team.The ideal candidate will have a strong technical background and extensive experie...Show moreLast updated: 30+ days ago
We are seeking a Risk Management Analyst to join our Farm Credit family! This position primarily supports the Enterprise Risk Management (ERM) framework while establishing and executing risk mitiga...Show moreLast updated: 3 days ago
ABOUT Effective, secure communication in the cyber domain is essential to the everyday operations of military intelligence in America’s Navy.
Information Professionals who oversee the seamless opera...Show moreLast updated: 4 days ago ABOUT Effective, secure communication in the cyber domain is essential to the everyday operations of military intelligence in America’s Navy.
Information Professionals who oversee the seamless opera...Show moreLast updated: 4 days ago 
This is a hybrid role, with the expectation that time working will regularly take place inside and outside of either our Phoenix, Dallas, Charlotte, Chicago, Miami or Denver office.FCB’s Comm...Show moreLast updated: 2 days ago ABOUT Effective, secure communication in the cyber domain is essential to the everyday operations of military intelligence in America’s Navy.
Information Professionals who oversee the seamless opera...Show moreLast updated: 4 days ago 
What you’ll need to succeed as a Senior Analyst, Audit and Compliance at XPO Minimum qualifications : Bachelor's degree or equivalent related work or military experience 2 years of relevant experien...Show moreLast updated: 2 days ago
ESSENTIAL JOB FUNCTIONS Analyzes global markets for IT Services, servers, storage, backup, IT security, productivity software, remote monitoring services, hyperconvergence and IoT.Studies SMB and m...Show moreLast updated: 30+ days ago
The company built on breakthroughs.Corning is one of the world’s leading innovators in glass, ceramic, and materials science.
From the depths of the ocean to the farthest reaches of space, our techn...Show moreLast updated: 11 days ago
Join Action Behavior Centers as a Senior BCBA.And we commit to a response within 24 hours.Ability to earn more through additional performance-based bonuses.
Bonuses kick in at just 26 hours of treat...Show moreLast updated: 30+ days ago
We are seeking a Risk Management Analyst to join our Farm Credit family! This position primarily supports the Enterprise Risk Management (ERM) framework while establishing and executing risk mitiga...Show moreLast updated: 2 days ago
Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose.
While working in a dynamic, diverse, and inc...Show moreLast updated: 4 days ago
In our 'always on' world, we believe it's essential to have a genuine connection with the work you do.Our EHS team is growing, and we are adding an Environmental, Health & Safety (EH&S) Engineer on...Show moreLast updated: 12 days ago
We're looking for an experienced Security Engineer, who is passionate about doing the right thing, to join our Information Security and Risk team.
In this role, you will focus on being a thought lea...Show moreLast updated: 30+ days ago ABOUT Effective, secure communication in the cyber domain is essential to the everyday operations of military intelligence in America’s Navy.
Information Professionals who oversee the seamless opera...Show moreLast updated: 4 days ago 
Senior Security Architect Job Duties : Enhances security team accomplishments and competence by planning deliver...Show moreLast updated: 30+ days ago K2 Integrity is seeking an experienced Information Security Analyst who is passionate about secure software development and developer enablement.
This candidate will be responsible for the design, i...Show moreLast updated: 30+ days ago 
Controls Engineer reporting to work in Hickory, NC.Lead controls engineers in installing & commissioning fiber optic cabling equipment.
Use controls engineering principles to design new cabling proc...Show moreLast updated: 3 days ago
Overview Intuit is seeking highly motivated individuals to join our dynamic team as dedicated TurboTax Live Seasonal Local Service Experts in one of our new TurboTax locations across the United Sta...Show moreLast updated: 18 hours ago
- Promoted
Scribe
Piedmont Healthcare PAMooresville, NC, USFull-time
Senior Data Analyst
K2 IntegrityCharlotte, NC, USFull-time
Quick Apply
Risk Mgmt Analyst I
AgSouth Farm CreditUSA, North Carolina, StatesvilleFull-time
- Promoted
Military Intelligence
NavyStatesville, NC, United StatesFull-time
- Promoted
Intelligence Officer
NavyYork County, SC, United StatesFull-time
- Promoted
Commercial Front Line Monitoring Risk Analyst
First Citizens BankCharlotte, NC, USFull-time
- Promoted
IT Professional
NavyClaremont, NC, United StatesFull-time
- Promoted
Senior Analyst, Audit and Compliance
XPOCharlotte, NC, USFull-time
- Promoted
Analyst - Earn Up to $37 / hr
TradeJobsWorkforce28034 Dallas, NC, USFull-time
Security Officer
CorningConcord, NC, USFull-time
Quick Apply
- Promoted
Board Certified Behavioral Analyst
Action Behavior CentersConcord, NC, United StatesFull-time
Risk Mgmt Analyst I
AgSouth Farm Credit, ACAUSA, North Carolina, StatesvilleFull-time
- Promoted
Unarmed Security Officer - Manufacturing Site
Allied Universal®Kings Mountain, NC, USFull-time
- Promoted
EHS Engineer
CommscopeCatawba, North Carolina, USFull-time
Info Security Sr Engineer I (Hybrid)
Principal Financial Group, Inc.USA, North Carolina, CharlotteFull-time +1
- Promoted
Military Intelligence Officer
NavyBessemer City, NC, United StatesFull-time
- Promoted
Senior Security Architect
TradeJobsWorkForce28034 Dallas, NC, USFull-time
Information Security Analyst
K2 IntegrityCharlotte, NC, USFull-time
Quick Apply
- Promoted
Sr Controls Engineer
Corning IncHickory, NC, USFull-time
- Promoted
- New!
Tax Expert
IntuitMooresville, NC, USFull-time