RiseMe
LoginSign Up
Cornerstone Technology Enterprises logo
Cornerstone Technology Enterprises Verified
IT Services, Software Development, Consulting

Cybersecurity Analyst (RMF / STIG / ACAS) - ACTIVE SECRET CLEARANCE REQUIRED - Remote

United StatesRemoteFull Time$79,913–$100,000 /yrPosted 2 months agoVisa sponsorship available

Is this role right for you?

Upload your resume and get a skill-by-skill breakdown — see exactly where you match, where you're close, and what to highlight. Not a mystery percentage.

Get a tailored resume highlighting what this role needs.

Role summary

Cornerstone Technology Enterprises is seeking a remote, full-time Cloud Governance Analyst with an active Secret clearance to support a Department of Defense program. This role focuses on cybersecurity compliance, cloud governance, and Risk Management Framework (RMF) activities, including vulnerability management coordination using ACAS/Tenable, STIG compliance, and developing governance documentation for cloud systems. The analyst will collaborate with infrastructure, cybersecurity, and application teams, support RMF artifact development, and ensure alignment with DoD cybersecurity and cloud governance requirements. Experience with Agile workflows in Jira and developing technical documentation is essential.

Job Title: Cybersecurity Analyst (RMF / STIG / ACAS)

Location: Remote

Clearance Required: Active Secret

Employment Type: Full-Time

Overview

Cornerstone Technology Enterprises is seeking a Cloud Governance Analyst to support cybersecurity compliance, cloud governance, and RMF activities for a Department of Defense program. This role focuses on vulnerability management coordination, STIG compliance, and development of governance documentation for cloud-hosted and cloud-migrated systems. The position requires close collaboration with infrastructure, cybersecurity, and application teams in a controlled, compliance-driven environment.

The ideal candidate has hands-on experience with ACAS or Tenable, familiarity with RMF processes, and the ability to translate cybersecurity findings into actionable remediation across multiple teams.

Key Responsibilities

Vulnerability Management and Compliance Coordination

  • Review and analyze ACAS or Tenable vulnerability scan results and identify required remediation actions
  • Interpret STIG requirements and CKLB outputs, identify compliance gaps, and coordinate resolution efforts
  • Track remediation progress across teams and ensure closure within required timelines

RMF and Governance Support

  • Support Risk Management Framework activities, including control validation and documentation development
  • Assist with development and maintenance of RMF artifacts, including Assessment and Management Plans, PPSM documentation, AORs, and MFRs
  • Ensure systems align with DoD cybersecurity and cloud governance requirements

Cloud Governance and Migration Support

  • Support governance activities for cloud-hosted and cloud-migrated systems in AWS, Azure, or similar environments
  • Assist in ensuring compliance throughout system lifecycle and migration efforts
  • Coordinate with engineering teams to align cloud implementations with security requirements

Documentation and Process Development

  • Develop Standard Operating Procedures for system administration, account management, change management, and operations
  • Produce clear and structured technical documentation supporting governance and compliance activities
  • Develop RACI matrices and process documentation to define roles and responsibilities

Agile Collaboration and Workflow Management

  • Use Jira to track tasks, document activities, and manage workflow
  • Participate in Agile ceremonies including stand-ups, sprint planning, and backlog grooming
  • Coordinate across cross-functional teams to support program objectives

Required Qualifications

  • Minimum of 3 years of experience in cybersecurity, RMF, or IT governance
  • Active Secret clearance
  • Experience with ACAS, Tenable, or similar vulnerability scanning tools
  • Familiarity with STIGs and CKLBs
  • Working knowledge of RMF processes and documentation
  • Experience developing technical documentation and SOPs
  • Familiarity with cloud environments such as AWS or Azure
  • Experience working in Agile environments using Jira
  • Strong communication and coordination skills

Desired Qualifications

  • Experience supporting DoD or federal programs
  • Familiarity with eMASS
  • Experience supporting ATO or continuous monitoring activities
  • Understanding of DoD cloud governance and security requirements

Why Join Cornerstone?

Cornerstone Technology is a veteran-owned small business with deep experience supporting federal and defense missions. Our teams operate inside production environments, supporting systems that matter, while maintaining a culture that values accountability, technical excellence, and strong partnership with our customers.

This role offers the opportunity to contribute directly to cybersecurity and cloud governance efforts supporting mission-critical systems.

Pay: $79,912.55 - $100,000.00 per year

Benefits:

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee discount
  • Flexible spending account
  • Health insurance
  • Health savings account
  • Life insurance
  • Paid time off
  • Retirement plan
  • Vision insurance

Application Question(s):

  • Do you have hands-on experience reviewing STIGs and working with CKLBs to track compliance and remediation?
  • What is your level of experience supporting RMF (Risk Management Framework) activities?
  • Have you coordinated vulnerability or STIG remediation efforts across multiple teams?

Experience:

  • Vulnerability Scanning (ACAS / Tenable): 2 years (Required)

License/Certification:

  • CompTIA Security+ (Required)

Security clearance:

  • Secret (Required)

Work Location: Remote

Ready to apply?
You'll be redirected to Cornerstone Technology Enterprises's application page.