US Public Sector Continuous Monitoring Analyst

Rapid7

Trust, Risk, and Compliance Analyst focusing on public sector compliance programs like FedRAMP. Supporting ongoing compliance initiatives through continuous monitoring and risk management.

Posted 5/6/2026full-timeRemote • Maryland • 🇺🇸 United StatesJuniorMid-Level💰 $86,700 - $117,300 per yearWebsite

Tech Stack

Tools & technologies

CloudCyber SecurityServiceNow

About the role

Key responsibilities & impact

Support continuous monitoring (ConMon) activities for Rapid7’s US Public Sector compliance programs, with a primary focus on FedRAMP and GovRAMP
Assist in managing Plans of Action & Milestones (POA&Ms), including tracking remediation progress, timelines, and risk ownership
Help analyze security findings, vulnerability results, and control deficiencies in partnership with Engineering and Security teams
Support technical evidence collection aligned to NIST 800-53 rev. 5 and NIST 800-171
Use ATO-focused GRC platforms such as Paramify, ServiceNow GRC, Onspring, RegScale, and DefectDojo to track findings, risks, and compliance status
Participate in discussions with engineers to understand control implementations, technical risks, and remediation approaches
Assist with preparation of ConMon deliverables (POA&M, deviation requests, inventory workbook)
Help improve POA&M and ConMon processes through standardization, automation, and improved data quality
Gain hands-on exposure to evolving requirements such as CMMC, new Executive Orders, and other US public sector cybersecurity initiatives

Requirements

What you’ll need

2-5 years of experience (or equivalent academic/internship experience) in cybersecurity, cloud security, compliance, or risk management
Foundational knowledge of NIST 800-53 and/or NIST 800-171
Interest in vulnerability management, risk remediation, and continuous monitoring
Experience or familiarity with ATO-focused GRC platforms such as Paramify, ServiceNow GRC, Onspring, or RegScale
Ability to understand and document technical security issues and risks
Strong analytical skills and attention to detail
Clear written and verbal communication skills
A curious, collaborative mindset and eagerness to learn

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account Rapid7 Website LinkedIn All Job Openings 1001 - 5000 employees Founded 2000 🔒 Cybersecurity Cybersecurity Rapid7 is a cybersecurity company that provides a range of solutions designed to secure cloud, identity, and endpoint products. The company's Command Platform utilizes artificial intelligence to offer deep insights into cybersecurity threats and vulnerabilities. Rapid7's offerings include Managed XDR for continuous monitoring, detection, and incident response, as well as tools for attack surface management, vulnerability management, and threat intelligence. The company is known for its open-source projects like Metasploit and Velociraptor, which aid in vulnerability research and enhancing cybersecurity frameworks. Rapid7 also emphasizes community and culture, contributing to diversity, equity, and inclusion, and engages in public policy advocacy to strengthen cybersecurity on a broader scale. They serve over 11,000 global companies and deliver expert analysis on attack trends and emergent threats through Rapid7 Labs. US Public Sector Continuous Monitoring Analyst Job not on LinkedIn 🔥 3 minutes ago 🦀 Maryland – Remote 💵 $86.7k - $117.3k / year ⏰ Full Time 🟢 Junior 🟡 Mid-level 🧐 Analyst 🦅 H1B Visa Sponsor Apply Now Find Hiring Managers Customize resume + cover letter Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Support continuous monitoring (ConMon) activities for Rapid7’s US Public Sector compliance programs, with a primary focus on FedRAMP and GovRAMP
Assist in managing Plans of Action & Milestones (POA&Ms), including tracking remediation progress, timelines, and risk ownership
Help analyze security findings, vulnerability results, and control deficiencies in partnership with Engineering and Security teams
Support technical evidence collection aligned to NIST 800-53 rev. 5 and NIST 800-171
Use ATO-focused GRC platforms such as Paramify, ServiceNow GRC, Onspring, RegScale, and DefectDojo to track findings, risks, and compliance status
Participate in discussions with engineers to understand control implementations, technical risks, and remediation approaches
Assist with preparation of ConMon deliverables (POA&M, deviation requests, inventory workbook)
Help improve POA&M and ConMon processes through standardization, automation, and improved data quality
Gain hands-on exposure to evolving requirements such as CMMC, new Executive Orders, and other US public sector cybersecurity initiatives 🎯 Requirements
2-5 years of experience (or equivalent academic/internship experience) in cybersecurity, cloud security, compliance, or risk management
Foundational knowledge of NIST 800-53 and/or NIST 800-171
Interest in vulnerability management, risk remediation, and continuous monitoring
Experience or familiarity with ATO-focused GRC platforms such as Paramify, ServiceNow GRC, Onspring, or RegScale
Ability to understand and document technical security issues and risks
Strong analytical skills and attention to detail
Clear written and verbal communication skills
A curious, collaborative mindset and eagerness to learn Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score Similar Jobs Competitive Intelligence and Strategy Analyst 🔥 1 hour ago KnowBe4 1001 - 5000 🔒 Cybersecurity ☁️ SaaS 📚 Education Website LinkedIn All Job Openings Competitive Intelligence and Strategy Analyst at KnowBe4 supporting global Revenue and Channel teams. Responsible for actionable competitive insights to drive strategic decision-making. 🇺🇸 United States – Remote 💵 $80k - $90k / year ⏰ Full Time 🟢 Junior 🧐 Analyst 🦅 H1B Visa Sponsor Epic Application Analyst 🔥 1 hour ago Sigma Systems 201 - 500 📡 Telecommunications ⚡ Energy ☁️ SaaS Website LinkedIn All Job Openings Remote Epic Application Analyst at Sigma Systems, Inc. responsible for resolving complex system issues for Children's Hospital Colorado. Analyze, design, and support applications in a clinical environment. 🇺🇸 United States – Remote 💰 $11M Venture Round - Tribold on 2009-01 ⏰ Full Time 🟡 Mid-level 🟠 Senior 🧐 Analyst Utilities Billing Account Analyst 🔥 3 hours ago TEOCO 501 - 1000 📡 Telecommunications 🤝 B2B ☁️ SaaS Website LinkedIn All Job Openings Utility BAN Management Analyst responsible for utility consulting and invoice analysis in a remote role. Collaborate with stakeholders and manage billing accounts within TEOCO’s Bill Trak system. 🇺🇸 United States – Remote 💰 $60M Private equity on 2009-11 ⏰ Full Time 🟡 Mid-level 🟠 Senior 🧐 Analyst 🦅 H1B Visa Sponsor Licensing Analyst, Contract Optimization 🔥 4 hours ago Gartner 10,000+ employees 🏢 Enterprise Website LinkedIn All Job Openings Licensing Analyst executing contract optimization client engagements for Gartner. Creating analytical models and providing practical licensing expertise in client contexts. 🇺🇸 United States – Remote 💵 $72k - $100k / year ⏰ Full Time 🟢 Junior 🟡 Mid-level 🧐 Analyst 🚫👨‍🎓 No degree required 🦅 H1B Visa Sponsor Interoperability, Measurable L1 Analyst 🔥 4 hours ago Health Catalyst 1001 - 5000 ⚕️ Healthcare Insurance 🤖 Artificial Intelligence ☁️ SaaS Website LinkedIn All Job Openings L1 Support Engineer providing first-level support for healthcare interoperability solutions via phone and email. Troubleshooting issues, managing access, and documenting customer interactions. 🇺🇸 United States – Remote ⏰ Full Time 🟡 Mid-level 🟠 Senior 🧐 Analyst 🦅 H1B Visa Sponsor View More Analyst Jobs 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecuritycloud securitycompliancerisk managementvulnerability managementrisk remediationcontinuous monitoringNIST 800-53NIST 800-171data quality improvement

Soft Skills

analytical skillsattention to detailwritten communicationverbal communicationcollaborative mindseteagerness to learn