All roles

Open role

Cybersecurity Policy and Risk Management Framework Analyst

Remote · Kenya Full-time

Title: Cybersecurity Policy & RMF Analyst Location: Remote (United States) Department: Health/Federal Civilian Sector Job Description: About Concept Plus Concept Plus is a growing consulting firm headquartered in Fairfax, VA. We are an Oracle Gold Partner, offering deep technical expertise, combined with business insights and an experienced team focused on providing technical solutions for our clients. We are proud to have been recognized as one of the "25 Most Powerful Oracle Solution Providers" in the area! We offer great benefits including competitive pay, comprehensive health insurance, dental and vision insurance, paid life insurance, paid time off, 11 paid holidays, bonuses, tuition reimbursement, unlimited training, and the opportunity to work in a collaborative, flexible, innovative environment! About the role Concept Plus is seeking a Cybersecurity Policy and RMF Analyst to provide Risk Management Support to identify shortfalls in the assessment and authorization process, track and manage Risk Assessments, assist in implementing a Risk Management strategy and tie together the business continuity of operations plan (COOP) and the IT COOP plans. What you'll do

  • Adhere to the DoD cybersecurity policy requirements set forth in DoDI 8500.01, "Cybersecurity," and DoDI 8510.01, "Risk Management Framework (RMF) for DoD Information Technology (IT)" and their successors.
  • Monitor identified risks and track response actions to ensure they support the customer Risk Management Strategy and are properly documented in a risk registry.
  • Provide recommendations to business and IT leaders on best business practices followed in the industry to mitigate or remediate risks · Schedule, conduct, and track RMF validations for each IT Portfolio.
  • Review of security controls, as part of a risk assessment, as needed to support an Authorization to Operate (ATO) of an investment.
  • Review vulnerabilities and identify potential risks based on the type of vulnerability and the potential impact.
  • Identify actions needed to protect information flows to ensure adherence to legal and regulatory standards.
  • Coordinate the development of plans and procedures to ensure that business-critical services are recovered in the event of a digital risk event. · Facilitate and support the development of asset inventories, including digital assets in cloud. · Track all technology requests.
  • Track open vulnerabilities and provide a status on each open risk for each IT Portfolio / Investment. Ensure POAMs are current and reflects all known weaknesses.
  • Stay up-to-date with the latest Azure and FedRAMP regulatory changes and industry trends, advising teams on potential impacts and necessary adjustments.

Required Qualifications

  • US Citizenship
  • Active DoD Secret Clearance (or able to obtain
  • Bachelor’s Degree in an IT related field
  • Meet DoD 8570/8140 Information Assurance Technician (IAT) Level II or Higher (Sec+ CE or Higher)
  • 1+ Years Experience with the Risk Management Framework Process
  • 1+ Years Experience operating the Enterprise Mission Assurance Support Service Application (eMASS)

Preferred Qualifications

  • Experience in performing IT audits, security planning and policy development
  • An understanding of related information technology (e.g. firewalls, VPN, virtualization, identity management systems etc.)
  • Knowledge of domain structure, user authentication, data encryption, access audits and end-use security best practices
  • CompTIA CySA+, CEH and/or CompTIA Pen Test+ Certifications a plus

Concept Plus is an Equal Opportunity Employer. As such, we will give your application full consideration without regard to your race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, gender identity, or any other classification protected by federal, state, or local law.

More open positions

Senior Cyber and Technology Risk Analyst

Work from home Full-time role

Regulatory Affairs Consultant- Defined Term (Remote, US)

Work from home Full-time role

Regulatory Compliance Specialist | Upto $125/hr Part-time

Work from home Full-time role

Senior Director, Regulatory Affairs – Advertising & Promotion

Work from home Full-time role

Director, Regulatory Affairs Strategy

Work from home Full-time role

SBA Underwriter

Work from home Full-time role

Telemedicine Physician (TRT) 30 states license minimum

Work from home Full-time role

Healthcare Sales Development Representative (Outbound Appointment Setter)

Work from home Full-time role

Remote Video Game Tester | Work From Home Gaming QA

Work from home Full-time role

[Remote] Implementation Engineer- Medical Imaging

Work from home Full-time role

Data Entry Specialist – Night Shift Operations | Precision Data Management & Quality Assurance Role at careerzynith

Work from home Full-time role

Product Manager, Members

Work from home Full-time role

Paralegal (Removal Defense Experience)

Work from home Full-time role

Remote Customer Service Representative – Flexible Hours, $16‑$35/hr – careerzynith Home‑Based Support Role

Work from home Full-time role

Remote Data Entry Specialist – careerzynith Home‑Based Position – No Experience Required – Flexible Schedule

Work from home Full-time role

[Remote] Legal Operations Specialist and Paralegal

Work from home Full-time role

Telecom GIS & Data Analyst – Network Capacity Planning

Work from home Full-time role

Senior Workday HCM Analyst

Work from home Full-time role

Finance & Logistics Coordinator

Work from home Full-time role

Navy Aviation Ordnance Analyst

Work from home Full-time role

Hybrid MDS Coordinator - RN

Work from home Full-time role