Cybersecurity Analyst – RMF & Vulnerability (ACAS / STIG / DoD)
Moseley Technical Services, Inc., North Charleston, South Carolina, United States, 29405
Check out this new opportunity!
Cybersecurity Analyst - RMF & Vulnerability Charleston, SC
$50.00–$55.00/Hour
Active Secret Clearance Required to Start
Join Moseley as a Cybersecurity Analyst supporting DoD systems in Charleston, SC, performing RMF, vulnerability, and STIG assessments using ACAS and enterprise cyber tools. Active Secret clearance required — TS/SCI preferred. Moseley is seeking a Cybersecurity Analyst to support cybersecurity assessment, compliance, and sustainment activities for DoD systems and networks. This position performs vulnerability scanning, STIG validation, RMF support, and security control assessments across Windows, Linux, virtual, and network environments. The analyst works closely with Information Assurance staff, system administrators, and program teams to maintain system security posture and support accreditation and continuous monitoring requirements. This role is ideal for a hands‑on cybersecurity professional experienced with ACAS/Nessus scanning, STIG remediation, POA&M management, and eMASS documentation in DoD environments.
Responsibilities
Perform cybersecurity assessment and sustainment activities for DoD systems and subsystems
Conduct vulnerability scans using ACAS/Nessus and related tools
Analyze scan results and coordinate remediation actions
Apply and validate DISA Security Technical Implementation Guides (STIGs)
Perform STIG reviews across Windows, Linux, network devices, and virtual platforms
Generate, update, and maintain POA&M and remediation tracking documentation
Support Risk Management Framework (RMF) lifecycle activities
Perform NIST 800-53 control validation and security control assessments
Document and upload security artifacts and control evidence in eMASS
Support ATO and continuous monitoring requirements
Review SCAP results, STIG checklists, and compliance reports
Support IAVA/IAVM response and vulnerability mitigation efforts
Maintain IA compliance across Windows, Linux, and Cisco-based systems
Support HBSS / ePO / Trellix security tools where applicable
Review and validate scan uploads and asset compliance data
Compile findings and prepare cybersecurity status reports
Coordinate with system administrators, network engineers, and program security staff
Provide clear technical documentation and assessment results
Qualifications
Active Secret Clearance Required
Minimum 4 years of direct cybersecurity / information assurance experience supporting DoD programs
CompTIA Security+ (Security+ CE) required
Must meet DoD 8570 IAT Level II requirements
Hands‑on experience with vulnerability scanning tools (ACAS / Nessus)
Experience implementing and validating DISA STIGs
Experience creating and maintaining POA&M
Experience supporting RMF and security assessment activities
Working knowledge of:
Windows operating systems
Linux operating systems
Network and Cisco equipment
Experience with eMASS documentation and workflows
Strong written and verbal communication skills
Preferred Qualifications
CASP+, CEH, or other advanced cybersecurity certifications
Experience supporting DoD cyber or enterprise network programs
Experience with SCCM patching and compliance support
Active Directory and Group Policy experience
Experience with HBSS / ePO / Trellix platforms
Experience with Splunk or enterprise log analysis tools
Experience with SCAP, STIG Viewer, Vulnerator, or similar tools
Virtualization experience (VMware, Hyper‑V)
Bachelor’s degree in Cybersecurity, Information Technology, or related field preferred
Experience supporting TacMobile or P‑8 ground system cybersecurity activities is a plus
Moseley Technical Services, Inc. is an AA/EEO/Veterans/Disabled Employer.
What to Expect
Applicants selected for employment will be required to pass a pre‑employment drug screening and background investigation, which may include education, criminal, and work history verifications.
Accepted applicants will be eligible for benefits, including medical and supplemental insurance, and a 401(k) plan. Appreciation and gratitude for employees are hallmarks of organizations with low turnover.
Final position level and pay will be based on experience.
Resources
To apply, send a resume to: resumes@moseleytechnical.com
For more active job openings: Search Jobs
For more information about Moseley: About Us
Moseley Technical Services, Inc. (Moseley) was incorporated in 1994 to provide engineering and professional services to the aerospace/defense, manufacturing, government, and commercial industries. Our Mission is to deliver superior service to our customers and employees. We have been successful in our vision by building long‑term relationships with customers and employees through integrity, transparency, and appreciation.
We stand by our 30-year-old commitment of “World Class Service. World Class Company.”
#J-18808-Ljbffr
Cybersecurity Analyst - RMF & Vulnerability Charleston, SC
$50.00–$55.00/Hour
Active Secret Clearance Required to Start
Join Moseley as a Cybersecurity Analyst supporting DoD systems in Charleston, SC, performing RMF, vulnerability, and STIG assessments using ACAS and enterprise cyber tools. Active Secret clearance required — TS/SCI preferred. Moseley is seeking a Cybersecurity Analyst to support cybersecurity assessment, compliance, and sustainment activities for DoD systems and networks. This position performs vulnerability scanning, STIG validation, RMF support, and security control assessments across Windows, Linux, virtual, and network environments. The analyst works closely with Information Assurance staff, system administrators, and program teams to maintain system security posture and support accreditation and continuous monitoring requirements. This role is ideal for a hands‑on cybersecurity professional experienced with ACAS/Nessus scanning, STIG remediation, POA&M management, and eMASS documentation in DoD environments.
Responsibilities
Perform cybersecurity assessment and sustainment activities for DoD systems and subsystems
Conduct vulnerability scans using ACAS/Nessus and related tools
Analyze scan results and coordinate remediation actions
Apply and validate DISA Security Technical Implementation Guides (STIGs)
Perform STIG reviews across Windows, Linux, network devices, and virtual platforms
Generate, update, and maintain POA&M and remediation tracking documentation
Support Risk Management Framework (RMF) lifecycle activities
Perform NIST 800-53 control validation and security control assessments
Document and upload security artifacts and control evidence in eMASS
Support ATO and continuous monitoring requirements
Review SCAP results, STIG checklists, and compliance reports
Support IAVA/IAVM response and vulnerability mitigation efforts
Maintain IA compliance across Windows, Linux, and Cisco-based systems
Support HBSS / ePO / Trellix security tools where applicable
Review and validate scan uploads and asset compliance data
Compile findings and prepare cybersecurity status reports
Coordinate with system administrators, network engineers, and program security staff
Provide clear technical documentation and assessment results
Qualifications
Active Secret Clearance Required
Minimum 4 years of direct cybersecurity / information assurance experience supporting DoD programs
CompTIA Security+ (Security+ CE) required
Must meet DoD 8570 IAT Level II requirements
Hands‑on experience with vulnerability scanning tools (ACAS / Nessus)
Experience implementing and validating DISA STIGs
Experience creating and maintaining POA&M
Experience supporting RMF and security assessment activities
Working knowledge of:
Windows operating systems
Linux operating systems
Network and Cisco equipment
Experience with eMASS documentation and workflows
Strong written and verbal communication skills
Preferred Qualifications
CASP+, CEH, or other advanced cybersecurity certifications
Experience supporting DoD cyber or enterprise network programs
Experience with SCCM patching and compliance support
Active Directory and Group Policy experience
Experience with HBSS / ePO / Trellix platforms
Experience with Splunk or enterprise log analysis tools
Experience with SCAP, STIG Viewer, Vulnerator, or similar tools
Virtualization experience (VMware, Hyper‑V)
Bachelor’s degree in Cybersecurity, Information Technology, or related field preferred
Experience supporting TacMobile or P‑8 ground system cybersecurity activities is a plus
Moseley Technical Services, Inc. is an AA/EEO/Veterans/Disabled Employer.
What to Expect
Applicants selected for employment will be required to pass a pre‑employment drug screening and background investigation, which may include education, criminal, and work history verifications.
Accepted applicants will be eligible for benefits, including medical and supplemental insurance, and a 401(k) plan. Appreciation and gratitude for employees are hallmarks of organizations with low turnover.
Final position level and pay will be based on experience.
Resources
To apply, send a resume to: resumes@moseleytechnical.com
For more active job openings: Search Jobs
For more information about Moseley: About Us
Moseley Technical Services, Inc. (Moseley) was incorporated in 1994 to provide engineering and professional services to the aerospace/defense, manufacturing, government, and commercial industries. Our Mission is to deliver superior service to our customers and employees. We have been successful in our vision by building long‑term relationships with customers and employees through integrity, transparency, and appreciation.
We stand by our 30-year-old commitment of “World Class Service. World Class Company.”
#J-18808-Ljbffr