RMF Analyst

CVP is an award-winning healthcare and next-gen technology consulting firm recognized for excellence and innovation in the solutions we have provided our clients across healthcare, national security, and the public sector.

We are seeking an RMF Analyst to support the USDA Risk Management Framework (RMF) processes in alignment with NIST SP 800‑53 and related publications. This role requires cybersecurity expertise and the ability to work effectively in a dynamic, cross‑functional IT organization.

• →Support development of Systems Security Plans (SSPs), Security Assessment Reports, and Plans of Action and Milestones (POAMs).
• →Support in assessing IT systems for compliance with defined information security requirements.
• →Support Security Controls Assessments in accordance with NIST SP 800‑53.
• →Develop training materials, lessons learned, and role‑based training plans to support RMF implementation across the USDA enterprise.
• →Utilize RMF workflow tools such as CSAM to support documentation and tracking activities.
• →Plan, analyze, develop, track, and present RMF training and documentation as required.
• →Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
• →Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• →Experience demonstrating strong analytical, troubleshooting and problem-solving skills for security information and event management.
• →Provide input to the Risk Management Framework process activities and related documentation.
• →Review artifacts provided, some of which may be technical or procedural in nature.
• →Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
• →Understand the basic concepts and issues related to cyber and its organizational impact.
• →Complete projects, tasks, and associated deliverables on time and with quality.

• Must be eligible to obtain a Public Trust government security clearance.
• 4-year college degree in Computer Science or related field and 2 years’ experience or 5 years’ experience in lieu of a college degree.
• Experience demonstrating strong analytical, troubleshooting and problem-solving skills for cybersecurity.
• Excellent communication skills, both written and oral.

• Knowledge of RMF workflow tools (e.g., CSAM).
• Strong understanding of NIST, FISMA, and applicable federal cybersecurity policies and standards.
• 3–5 years of relevant cybersecurity or RMF experience.

CVP is an award-winning healthcare and next-gen technology and consulting services firm solving critical problems for healthcare, national security, and public sector clients. We help organizations achieve lasting transformation.

CVP is an Equal Opportunity Employer dedicated to actively recruiting individuals and providing advancement opportunities based on merit and legitimate job qualifications. We ensure that all associates receive equal opportunities based on their personal qualifications and job requirements. CVP strictly prohibits any form of discrimination or harassment.

At CVP, we cultivate a work environment that encourages fairness, teamwork, and respect among all associated. We are committed to maintaining a workplace where everyone can grow both personally and professionally.