Sr. Security RMF Audit AnalystOasys International • Charlotte, NC, United States
Sr. Security RMF Audit Analyst
Oasys International • Charlotte, NC, United States
30+ days ago
Job type
- Full-time
Job descriptionAdvanced knowledge of NIST RMF, NIST SP 800-37, 800-53, DHS 4300A, and FISMA compliance. Experience preparing and maintaining RMF ATO documentation and conducting system assessments. Familiarity with Security Information and Event Management (SIEM) platforms for log analysis and incident monitoring. Proficient in evaluating and documenting security configurations and technical implementations for federal systems. Strong understanding of cybersecurity audit workflows, control testing, and risk-based prioritization of vulnerabilities. Excellent writing and communication skills, capable of producing technical documentation and executive summaries. Experience in Agile or DevSecOps environments, with a strong understanding of security integration within CI / CD pipelines. Bachelor's or Associate's degree in Computer Science, Math, Information Technology, Engineering, or related field. Two (2) years of directly relevant experience may substitute for one (1) year of formal education. Minimum of five (5) years of experience in Information security with auditing and IT controls design experience. Minimum of five (5) years of experience with Security Information and Event Management (SIEM). Minimum of five (5) years of experience in the risk management framework. Hands-on experience with Active Directory, Windows / UNIX systems, and relational databases in secure environments. Previous support of federal government enterprise systems or DHS / DOD programs is strongly preferred. U.S. citizenship required Must have an active DoD Secret Clearance. CompTIA Security+ Additional certifications (Network+, AWS Certified Cloud Practitioner, Microsoft Azure Fundamentals, Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), ITIL Foundation, TOGAF, or other cybersecurity architecture certifications) are a plus. Elizabeth City, NC - Hybrid North Carolina Region - Must be able to go on-site at least three days a week
Who We Are : Oasys International, LLC (Oasys) is a rapidly expanding firm that has been recognized on Inc. 5000 magazine's list of the fastest-growing companies for five consecutive years. We are a dynamic organization dedicated to providing world-class technology consulting services through our team of expert technologists, consultants, engineers, and subject matter experts. At Oasys, we prioritize continuous learning, a healthy work-life balance, and a collaborative work environment. Our culture is merit-based, recognizing and rewarding performance and fostering a supportive and social atmosphere.
Position Summary :
Oasys is seeking a Sr. Security RMF Audit Analyst to support the United States Coast Guard (USCG) at the Aviation Logistics Center (ALC)-Information Systems Division (ISD). The Sr. Security RMF Audit Analyst will lead audit preparation and execution, support continuous RMF lifecycle activities, and oversee compliance with federal cybersecurity requirements across on-premises, virtual, and cloud-hosted systems.
This position will serve as a senior technical advisor in security compliance efforts, guiding cross-functional teams through POA&M development, control remediation, ATO documentation, and continuous monitoring in accordance with NIST 800-53, DHS 4300A, and FISMA standards.
Primary Responsibilities :
- Oversee the Risk Management Framework (RMF) lifecycle, including assessment, authorization, and continuous monitoring across all ALC-ISD systems.
- Lead and coordinate internal and external cybersecurity audits, including pre-audit readiness assessments and post-audit remediation tracking.
- Validate the implementation of security controls (NIST SP 800-53 Rev. 5) and ensure they are effectively documented within System Security Plans (SSPs), Security Assessment Reports (SARs), and related artifacts.
- Design and implement vulnerability management strategies, assess threat vectors, and develop comprehensive Plans of Action and Milestones (POA&Ms).
- Analyze cyber risks and provide guidance on remediation strategies aligned with DHS policy and evolving cybersecurity threats.
- Perform and document risk assessments, penetration testing coordination, and impact analyses to evaluate the security posture of information systems.
- Collaborate with Security Control Assessors (SCAs), engineers, ISSOs, and DevSecOps teams to ensure audit alignment with enterprise system modernization efforts.
- Manage and maintain audit packages, compliance dashboards, and evidence repositories using platforms like Jira, Confluence, and SharePoint.
- Assess and validate configurations of infrastructure (e.g., Windows, Linux, databases, Active Directory) for compliance with security benchmarks (e.g., DISA STIGs, CIS).
- Draft and update security-related documentation including SOPs, incident response plans, and security test procedures.
- Serve as a subject matter expert to stakeholders on RMF best practices, ATO sustainment, and security documentation management.
- All other duties as assigned by management.
Skills / Qualifications :
Education / Experience Requirements :
Clearance :
Certification Requirement
Work Location :
Oasys is proud to be an equal opportunity employer for all protected groups, including protected veterans and individuals with disabilities.
Create a job alert for this search
Audit Analyst • Charlotte, NC, United States
Related jobs
The Internal Auditor supports the Internal Audit Department's goal of providing independent, objective, assurance and consulting services to the Board of Directors, Supervisory Committee and Senior...Show more
As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to ...Show more
As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to ...Show more
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their ful...Show more
On site at locations listed Memphis, TN, Birmingham, AL, Dallas, TX, Lafayette, LA, New Orleans, LA, Charlotte, NC, Raleigh, NC, Atlanta, GA, Miami, FL.
Primarily responsible for completing audit en...Show more
At LPL Financial, we empower professionals to shape their success while helping clients pursue their financial goals with confidence.
Discover what's possible with LPL Financial.The AML Compliance S...Show more
Our client, a leading financial services institution, is seeking an IAM Triage Lead Analyst (Information Security Analyst 3) to join their team.
As an IAM Triage Lead Analyst, you will be part of th...Show more
This is a hybrid role located in Raleigh, NC or Charlotte, NC with the expectation that time working will regularly take place inside and outside of a company office.
Open to remote in several marke...Show more
Evaluate item performance, optimize assortment planning, and develop store clustering strategies through the.Use strong communication and influencing skills to translate insights into actionable re...Show more
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their ful...Show more
JLL empowers you to shape a brighter way.Our people at JLL and JLL Technologies are shaping the future of real estate for a better world by combining world class services, advisory and technology f...Show more
JLL empowers you to shape a brighter way.Our people at JLL and JLL Technologies are shaping the future of real estate for a better world by combining world class services, advisory and technology f...Show more
Premium operates wireless locations in over 1,300 Wireless Retail outlets via Walmart Supercenter, with a dedicated sales team of over 3,200 brand representatives.
As one of Premium's Wireless Sales...Show more
Audit Manager Senior Specialist.At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve.
We are all united in delivering the best experience for our cust...Show more
To proceed with your application, you must be at least 18 years of age.To proceed with your application, you must be at least 18 years of age.
At Bank of America, we are guided by a common purpose t...Show more
Senior Analyst - Batch Operations.The ideal candidate will have strong expertise in.ETL processes, scheduling tools, cloud-based frameworks (AWS / Airflow), and ServiceNow modules.This role requires ...Show more
PLEASE NOTE : This role requires the candidate to be in or near Charlotte, NC.In-office presence is required three days a week.
Additionally, this position does not offer visa sponsorship.You absolut...Show more
Home Office - Catawba - Catawba SC.New-IndyWhere Innovation Meets Opportunity!.New-Indy is an independent privately-owned manufacturer and supplier of corrugated boxes recycled containerboard and v...Show more
Internal Auditor
Family Trust Federal Credit Union • Rock Hill, SC, United States
Full-time
Last updated: 17 days ago • Promoted
Stratascale Associate Security Analyst - Operations
SHI GmbH • Charlotte, NC, United States
Full-time
Last updated: 30+ days ago • Promoted
Stratascale Associate Security Analyst - Operations
StrataScale • Charlotte, NC, United States
Full-time
Last updated: 30+ days ago • Promoted
Oracle ERP Security & Controls Senior Associate
RSM US LLP • Charlotte, NC, United States
Full-time
Last updated: 30+ days ago • Promoted
Audit Sr Advisor - Corporate
First Horizon Bank • Charlotte, NC, United States
Full-time
Last updated: 25 days ago • Promoted
Senior Analyst, AML Compliance Governance, Advisory, and Training
LPL Financial • Fort Mill, SC, US
Full-time
Last updated: 5 days ago • Promoted
IAM Risk Analyst
Experis • Charlotte, NC, United States
Full-time
Last updated: 30+ days ago • Promoted
Senior Risk Analyst
First Citizens Bank • Charlotte, NC, US
Full-time
Last updated: 30+ days ago • Promoted
Sr Analyst (Space Management)
Acosta Group • Charlotte, NC, United States
Full-time
Last updated: 25 days ago • Promoted
Oracle ERP Security & Controls Senior Associate
RSM Global • Charlotte, NC, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr Business Intelligence Analyst
JLL • Charlotte, NC, United States
Full-time
Last updated: 17 days ago • Promoted
Sr Business Intelligence Analyst
Jones Lang LaSalle IP, Inc. • Charlotte, NC, United States
Full-time
Last updated: 17 days ago • Promoted
Sales Pro
Premium Retail Services • Statesville, NC, US
Full-time
Last updated: 30+ days ago • Promoted
Audit Manager Senior Specialist - Cyber Security
Charlotte Staffing • Charlotte, NC, US
Full-time +1
Last updated: 21 days ago • Promoted
Ops Sr. Analyst MKTS
Bank of America • Charlotte, NC, United States
Full-time
Last updated: 23 hours ago • Promoted
Sr Analyst Batch Operations
TalentBridge • Fort Mill, SC, United States
Full-time
Last updated: 25 days ago • Promoted
Sr. Analyst, Revenue Analytics
LendingTree • Charlotte, NC, United States
Full-time
Last updated: 23 hours ago • Promoted
Director Cyber Security
New-Indy Containerboard • Catawba, South Carolina, USA
Full-time
Last updated: 2 days ago • Promoted