RMF Cybersecurity Analyst (Windows Systems)
Integration Innovation, Inc., Huntsville, AL, United States
Overview
i3 is seeking an RMF Cybersecurity Analyst with Windows expertise to support an Army program focused on Risk Management Framework (RMF) compliance and continuous monitoring of Windows-based systems.
This position is cybersecurity-focused, responsible for vulnerability scanning, remediation, STIG compliance, and RMF artifact management across enterprise Windows environments.
The selected candidate will work closely with cybersecurity, engineering, and operations teams to ensure systems meet DoD RMF requirements, maintain compliance, and support Authorization to Operate (ATO) objectives.
Candidates must possess a United States SECRET security clearance.
Responsibilities
RMF & Cybersecurity (Primary Focus)
Perform vulnerability scanning using Nessus (ACAS) on Windows systems.
Analyze scan results and conduct vulnerability triage, prioritization, and reporting.
Execute and track vulnerability remediation efforts using enterprise tools (e.g., MECM/SCCM).
Develop, maintain, and manage Plan of Action and Milestones (POA&M) artifacts.
Apply and validate DISA STIGs for Windows Server and Windows 10/11 systems.
Support RMF 2.0 lifecycle activities, including:
Control implementation
Continuous monitoring
Security control validation
Maintain and update eMASS artifacts, including control implementations, vulnerabilities, and system status.
Support Independent Security Assessments (ISA) and ATO sustainment activities.
Ensure compliance with NIST 800-53 / CNSSI 1253 controls and DoD cybersecurity policies.
Support implementation of Zero Trust principles within Windows environments.
Windows Systems Support (Secondary / Enabling Role)
Administer and maintain Windows Server and workstation environments.
Manage and support Active Directory (AD), including:
Users, Groups, OUs
Group Policy Objects (GPOs)
Execute patching and configuration management using tools such as MECM/SCCM.
Perform and validate system hardening in accordance with STIG requirements.
Support CAC/Smartcard PKI authentication and certificate lifecycle management.
Assist with troubleshooting systems that fail compliance or patch baselines.
Support backup and recovery operations in secure environments.
Collaborate with DevSecOps teams to integrate security into operational workflows.
Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field with 6+ years of experience, or 10+ years equivalent experience.
Strong hands-on experience with:
Nessus / ACAS vulnerability scanning
STIG implementation and validation (Windows)
POA&M development and management
RMF processes and continuous monitoring
Experience working within DoD RMF environments (ATO lifecycle).
Familiarity with:
NIST 800-53 controls
eMASS or equivalent RMF tools
Experience administering Windows Server and Active Directory environments.
Experience with enterprise patching/remediation tools (MECM/SCCM).
Must meet DoD 8140 (IAT Level II or higher) requirements (e.g., Security+).
U.S. Citizenship required.
Active Secret clearance required. Must be able to maintain the security clearance required for this position.
Desired/Preferred:
Experience supporting Army or DoD enterprise environments.
Familiarity with:
HBSS (or successor tools)
Endpoint security platforms
Experience with PKI, certificate authorities, and CAC authentication.
Experience with NetApp or enterprise storage systems.
Familiarity with automation and scripting (PowerShell).
Understanding of Zero Trust architecture principles.
Knowledge/Skills
Knowledge of office administration and procedures.
Exceptional judgment capabilities and relationship management skills.
Excellent communication, teamwork, and client service skills; ability to clearly communicate in discussions and written documents, and to deliver feedback clearly and tactfully.
Interact with a diverse array of customers and staff in a professional and courteous manner.
Work independently with accountability for accurate and complete results.
Be extremely organized and exceptionally detail oriented.
Work well both independently and in a team environment.
Be energized by a fast-paced work environment.
Must be able to communicate with others effectively.
Analyze information and respond appropriately.
Manage time wisely and prioritize tasks.
Provide superior customer service.
Multi-task in a pleasant manner.
Work well under pressure.
PHYSICAL DEMANDS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; walk; handle or feel; and reach with hands and arms.
The employee is occasionally required to sit; climb or balance; and stoop, kneel, crouch or crawl. The employee must be able to lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.
Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception and ability to adjust focus.
Regular i3 hours are 8:00 a.m. - 5:00 p.m. Monday-Friday, however, additional hours may be required on occasion. Regular and punctual attendance is required.
About i3
i3 is a technically diverse, 100% team member owned business, headquartered in Huntsville, Alabama specializing in missile and aviation systems engineering and logistic services, electronic warfare and electromagnetic effects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation. We have established a broad offering of products and capabilities collectively providing decades of experience supporting the full complement of DoD military services, Missile Defense Agency, National Aeronautics and Space Administration, and a variety of other Government organizations and private industry customers.
Perks of being a team member owner include:
Long-term financial security
Higher job satisfaction
Greater job security
Personal and professional growth
Great company culture
Other outstanding benefits:
Excellent insurance coverage
401(k) match
Generous PTO
Health and wellness incentives
Tuition and certification reimbursement
Countless opportunities to give back to the community through i3 Cares
We work hard. We compete hard. We play hard. Apply now to join us!
Job LocationsUS-AL-Huntsville
ID 2026-5070
Type Full-Time
Clearance Secret Required
i3 is seeking an RMF Cybersecurity Analyst with Windows expertise to support an Army program focused on Risk Management Framework (RMF) compliance and continuous monitoring of Windows-based systems.
This position is cybersecurity-focused, responsible for vulnerability scanning, remediation, STIG compliance, and RMF artifact management across enterprise Windows environments.
The selected candidate will work closely with cybersecurity, engineering, and operations teams to ensure systems meet DoD RMF requirements, maintain compliance, and support Authorization to Operate (ATO) objectives.
Candidates must possess a United States SECRET security clearance.
Responsibilities
RMF & Cybersecurity (Primary Focus)
Perform vulnerability scanning using Nessus (ACAS) on Windows systems.
Analyze scan results and conduct vulnerability triage, prioritization, and reporting.
Execute and track vulnerability remediation efforts using enterprise tools (e.g., MECM/SCCM).
Develop, maintain, and manage Plan of Action and Milestones (POA&M) artifacts.
Apply and validate DISA STIGs for Windows Server and Windows 10/11 systems.
Support RMF 2.0 lifecycle activities, including:
Control implementation
Continuous monitoring
Security control validation
Maintain and update eMASS artifacts, including control implementations, vulnerabilities, and system status.
Support Independent Security Assessments (ISA) and ATO sustainment activities.
Ensure compliance with NIST 800-53 / CNSSI 1253 controls and DoD cybersecurity policies.
Support implementation of Zero Trust principles within Windows environments.
Windows Systems Support (Secondary / Enabling Role)
Administer and maintain Windows Server and workstation environments.
Manage and support Active Directory (AD), including:
Users, Groups, OUs
Group Policy Objects (GPOs)
Execute patching and configuration management using tools such as MECM/SCCM.
Perform and validate system hardening in accordance with STIG requirements.
Support CAC/Smartcard PKI authentication and certificate lifecycle management.
Assist with troubleshooting systems that fail compliance or patch baselines.
Support backup and recovery operations in secure environments.
Collaborate with DevSecOps teams to integrate security into operational workflows.
Qualifications
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field with 6+ years of experience, or 10+ years equivalent experience.
Strong hands-on experience with:
Nessus / ACAS vulnerability scanning
STIG implementation and validation (Windows)
POA&M development and management
RMF processes and continuous monitoring
Experience working within DoD RMF environments (ATO lifecycle).
Familiarity with:
NIST 800-53 controls
eMASS or equivalent RMF tools
Experience administering Windows Server and Active Directory environments.
Experience with enterprise patching/remediation tools (MECM/SCCM).
Must meet DoD 8140 (IAT Level II or higher) requirements (e.g., Security+).
U.S. Citizenship required.
Active Secret clearance required. Must be able to maintain the security clearance required for this position.
Desired/Preferred:
Experience supporting Army or DoD enterprise environments.
Familiarity with:
HBSS (or successor tools)
Endpoint security platforms
Experience with PKI, certificate authorities, and CAC authentication.
Experience with NetApp or enterprise storage systems.
Familiarity with automation and scripting (PowerShell).
Understanding of Zero Trust architecture principles.
Knowledge/Skills
Knowledge of office administration and procedures.
Exceptional judgment capabilities and relationship management skills.
Excellent communication, teamwork, and client service skills; ability to clearly communicate in discussions and written documents, and to deliver feedback clearly and tactfully.
Interact with a diverse array of customers and staff in a professional and courteous manner.
Work independently with accountability for accurate and complete results.
Be extremely organized and exceptionally detail oriented.
Work well both independently and in a team environment.
Be energized by a fast-paced work environment.
Must be able to communicate with others effectively.
Analyze information and respond appropriately.
Manage time wisely and prioritize tasks.
Provide superior customer service.
Multi-task in a pleasant manner.
Work well under pressure.
PHYSICAL DEMANDS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; walk; handle or feel; and reach with hands and arms.
The employee is occasionally required to sit; climb or balance; and stoop, kneel, crouch or crawl. The employee must be able to lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.
Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception and ability to adjust focus.
Regular i3 hours are 8:00 a.m. - 5:00 p.m. Monday-Friday, however, additional hours may be required on occasion. Regular and punctual attendance is required.
About i3
i3 is a technically diverse, 100% team member owned business, headquartered in Huntsville, Alabama specializing in missile and aviation systems engineering and logistic services, electronic warfare and electromagnetic effects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation. We have established a broad offering of products and capabilities collectively providing decades of experience supporting the full complement of DoD military services, Missile Defense Agency, National Aeronautics and Space Administration, and a variety of other Government organizations and private industry customers.
Perks of being a team member owner include:
Long-term financial security
Higher job satisfaction
Greater job security
Personal and professional growth
Great company culture
Other outstanding benefits:
Excellent insurance coverage
401(k) match
Generous PTO
Health and wellness incentives
Tuition and certification reimbursement
Countless opportunities to give back to the community through i3 Cares
We work hard. We compete hard. We play hard. Apply now to join us!
Job LocationsUS-AL-Huntsville
ID 2026-5070
Type Full-Time
Clearance Secret Required