Crest Security Assurance - Arlington, VA
posted 6 days ago
The Information Security Analyst SME is responsible for leading the Risk Management Framework (RMF) assessment, authorization, and monitoring processes for systems in compliance with NIST and ICD 503 standards. This role requires maintaining knowledge of federal cybersecurity policies, performing continuous monitoring, and facilitating risk management decisions through vulnerability analysis and management. The position also involves adapting vulnerability management processes to ensure compliance with FISMA and supporting cloud systems and CI/CD pipelines.