Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Arcarithm

Cyber Assessment & Authorization Engineer, E4

Arcarithm

Cyber Assessment & Authorization Engineer E4 supporting Arcarithm's innovative cybersecurity solutions for leading defense clients. Perform assessments and establish security processes for critical systems across various platforms.

Posted 7/1/2026full-timeColorado Springs • Colorado • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
Cyber SecurityLinux

About the role

Key responsibilities & impact
  • Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts.
  • Perform assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy.
  • This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc. and active evaluations such as vulnerability assessments utilizing ACAS.
  • Perform Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS.
  • Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks.
  • Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated.
  • Establish strict program control processes to ensure mitigation of risks and supports obtaining assessment and authorization of systems.
  • Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.
  • Assist in the implementation of the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, participating in and documenting process activities.
  • Perform analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards.
  • Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization.
  • Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, supporting Assessment and Authorization activities and maintain the Plan of Actions and Milestones (POA&M).
  • Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed.
  • Coordinate across the program to address identified deficiencies during RMF assessment activities.

Requirements

What you’ll need
  • Generally 3+ years of related experience and may have post-secondary degree or training in a related discipline.
  • Active Top Secret clearance required to start.
  • IAT Level II / IAM Level I DoD 8570 certification (Sec+ CE or equivalent).
  • Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
  • Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS).
  • Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle to include: Identifying controls and overlays.
  • Generating testable requirements.
  • Identifying resilient architecture design.
  • Configuring, running, and scripting audit tools.
  • Providing analysis of vulnerability analyses.
  • Conducting verification testing for compliance assessment.
  • Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g., Fortify/SonarQube).

Benefits

Comp & perks
  • comprehensive health insurance options
  • generous 401K plan
  • competitive salaries
  • continuous career growth opportunities
  • flexible schedules including remote work
  • mentoring and performance incentives

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Cybersecurity Technology KnowledgeCompliance AuditsVulnerability AssessmentTest Plan DevelopmentSystem HardeningAudit Tool ConfigurationStatic and Dynamic Code AnalysisRisk MitigationNetwork Topology DocumentationAuthorization Boundary Diagrams
Soft Skills
Analytical SkillsCoordinationCommunicationProblem-SolvingAttention to Detail
Certifications
IAT Level II CertificationIAM Level I CertificationDoD 8570 Certification