Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Cherokee Federal

Senior Information System Security Specialist

Cherokee Federal

. Provide support to the continuous monitoring process, assessing and evaluating Information Systems (hardware and software) to detect vulnerabilities and identify security weaknesses, including those inherited from FedRAMP cloud service providers and networked environments .

Posted 4/21/2026full-timeWashington • District of Columbia, Washington • 🇺🇸 United StatesSenior💰 $140,000 - $155,000 per yearWebsite

Tech Stack

Tools & technologies
CloudCyber SecurityLinuxSDLCSplunk

About the role

Key responsibilities & impact
  • Provide support to the continuous monitoring process, assessing and evaluating Information Systems (hardware and software) to detect vulnerabilities and identify security weaknesses, including those inherited from FedRAMP cloud service providers and networked environments
  • Track, analyze, and remediate vulnerabilities identified through Continuous Diagnostic and Mitigation (CDM) tools and other security platforms, ensuring corrective actions are implemented to improve system security posture
  • Provide cybersecurity expertise across the System Development Life Cycle (SDLC), supporting Agile, DevSecOps, and traditional development models, including Security Assessment and Authorization (SA&A) and Information System Continuous Monitoring (ISCM)
  • Develop and maintain ATO documentation including System Security Plans (SSP), Privacy Impact Assessments (PIA), Privacy Threshold Analyses (PTA), System of Records Notices (SORN), and supporting artifacts
  • Assist system owners, information owners, and ISSMs in managing Plans of Action and Milestones (POA&Ms), including identifying gaps, developing remediation strategies, and tracking progress
  • Conduct quality assurance reviews of POA&Ms to ensure accuracy, completeness, and cost-effective remediation strategies
  • Perform vulnerability scanning and security assessments across Linux, Windows, and cloud environments using tools such as Nessus, BigFix, Splunk, and similar platforms
  • Maintain and update system information in Cyber Security Assessment and Management (CSAM/JCAM) or equivalent systems
  • Support contingency planning activities, including Business Impact Analysis (BIA), testing, and documentation in accordance with NIST SP 800-34
  • Provide support for audit readiness by preparing documentation and assisting with responses to internal and external audits
  • Collaborate with system owners, business stakeholders, and IT operations teams to gather information, resolve issues, and ensure compliance with federal cybersecurity requirements
  • Support system inventory management, interconnections, and security documentation aligned with NIST standards
  • Perform other job-related duties as assigned

Requirements

What you’ll need
  • Bachelor’s degree in information systems, cybersecurity, or related field
  • Without a bachelor’s degree, at least 10 years of related experience required
  • Minimum of 8 years of information systems and network security experience
  • Minimum of 5–6 years of experience supporting federal government customers, including development and maintenance of ATO packages
  • Strong understanding of Federal Information Security Modernization Act (FISMA) requirements and reporting
  • Strong knowledge of NIST Risk Management Framework (RMF), including NIST SP 800-37, 800-53, 800-18, and related standards
  • Experience with FedRAMP and cloud security environments
  • Experience performing vulnerability scanning, assessment, and remediation across enterprise systems
  • Background in network security or system administration
  • Experience assisting system owners with mitigation and remediation activities through POA&M management
  • Experience with enterprise security architecture methodologies, tools, and best practices
  • Knowledge of contingency planning, backup and recovery, and system resilience practices
  • Ability to analyze security risks and provide actionable recommendations to improve system security posture
  • Must be comfortable working with system owners and IT operations teams to gather and validate information
  • Strong written and verbal communication skills.

Benefits

Comp & perks
  • Medical
  • Dental
  • Vision
  • 401K
  • and other possible benefits as provided. Benefits are subject to change with or without notice.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
vulnerability scanningsecurity assessmentssystem security plans (SSP)privacy impact assessments (PIA)privacy threshold analyses (PTA)plans of action and milestones (POA&M)continuous monitoringsecurity assessment and authorization (SA&A)information system continuous monitoring (ISCM)enterprise security architecture
Soft Skills
analytical skillscommunication skillscollaborationproblem-solvingattention to detailorganizational skillsleadershipadaptabilitycritical thinkingtime management