Junior Cyber Security Analyst

Everforth ECS is seeking a Junior Cyber Security Analyst to work out of our Ft. Meade, Md office.

  

Everforth ECS is seeking an experienced Junior Cyber Security Analyst to support robust Impact Level (IL) 5 and IL6 programs in an operational DoW environment that houses multiple U.S. Coalition Mission Partner Environments (MPE).

 

This position is a demanding, high-energy role that requires strong cybersecurity judgement, attention to detail, and the ability to support authorization, compliance, and continuous monitoring activities across multiple enclaves in a dynamic Azure DoW environment. The Junior Cyber Security Analyst will support cybersecurity operations, compliance, and continuous monitoring activities for a DoD Azure infrastructure environment. The analyst will assist the ISSO and security team with vulnerability tracking, STIG artifact review, POA&M updates, security tool monitoring, evidence collection, and ATO support documentation. This role will work closely with cloud engineers and cybersecurity to help maintain the security posture of the environment and support ongoing RMF and authorization activities. The Junior Cyber Security Analyst reports to the Senior Technical Program Manager.

 

Job Responsibilities:

• Assist with:
  • Vulnerability management activities, including reviewing ACAS/Nessus scan results, tracking findings, and coordinating remediation status with technical teams.
  • Reviewing and validating DISA STIG artifacts, checklists, and scan outputs for Windows, RHEL, and Azure environments.
  • Control documentation, artifact mapping, and validation of security evidence against RMF and ATO requirements.
• Support:
  • POA&M maintenance by helping update milestones, remediation status, risk statements, evidence, and closure documentation.
  • Incident response documentation, alert triage, and escalation activities as directed.
• Help collect, organize, and maintain cybersecurity artifacts needed for RMF, ATO, audits, assessments, and continuous monitoring.
• Monitor or assist with security tools such as Microsoft Sentinel, Trellix, Microsoft Defender for Cloud, ACAS, and related dashboards.
• Perform recurring log analysis within Azure Sentinel to identify anomalous events.
• Help document security findings, remediation actions, meeting notes, action items, and compliance status updates.
• Coordinate with cloud engineers, system administrators, and cybersecurity personnel to gather evidence and track remediation progress.
• Participate in recurring cybersecurity, vulnerability management, POA&M, and ATO status meetings.
• Maintain accurate trackers, repositories, reports, and documentation used to support the security posture of the Azure environment.
• Other duties, as assigned.