Senior InfoSec Analyst

Rise8 builds custom, secure software for government organizations, measuring success by impact: lives saved, time returned, and missions advanced. 

We think big, start small, and scale fast with elite teams across product, design, and engineering to drive continuous delivery for critical missions.

We believe customer experience starts with employee experience, so we take care of our employees. Rise8 is where you’ll do the best work of your career—supported by a culture you won’t find anywhere else. We offer competitive pay and benefits, but what sets us apart is our commitment to autonomy, growth, and a culture rooted in kindness, candor, and continuous learning. 

Certified as a Great Place to Work®, with 100% of employees saying they love working here, Rise8 is where bold ideas become real capabilities. Where mission meets meaning. And where fewer bad things happen because of bad software.

Are you a Senior InfoSec Analyst with extensive expertise across multiple domains, including cloud security, containerization, and compliance? Do you thrive in dynamic environments where collaboration, innovation, and secure delivery are top priorities? At Rise8, we’re looking for someone like you to lead the charge in securing complex systems, while ensuring client satisfaction across projects.  You see AI as a force multiplier, not a shortcut — and you're already weaving it into how you think, build, and ship.

• Collaborate with cross-functional teams to apply cybersecurity best practices across systems, applications, and cloud environments.
• Lead portions of cybersecurity assessments across the technology stack, identifying vulnerabilities and recommending remediation strategies.
• Assist in shaping cybersecurity risk management activities, helping prioritize and guide security initiatives to protect critical assets.
• Engage with external cybersecurity and compliance organizations to support alignment with Continuous RMF (cRMF) and DoD frameworks.
• Lead incident response investigations for medium-complexity events, conducting root cause analyses and proposing resilience improvements.
• Provide cybersecurity education and regular reporting on risks, metrics, and issues to technical and leadership audiences.
• Mentor junior team members, supporting skills development and fostering a culture of proactive security practices.
• Champion AI-augmented ways of working across your engagement(s), leveraging AI tooling to accelerate delivery, reduce cycle time, and drive better outcomes at scale.

• Must have an active Secret clearance. 
• 6–10 years of experience in cybersecurity, information assurance, security operations, or related fields.
• BA/BS degree in Cybersecurity, Computer Science, Information Systems, or equivalent practical experience.
• Solid understanding of cybersecurity principles, including risk management, vulnerability management, encryption, boundary defense, auditing, and authentication.
• Proficient with cloud, application, and platform security practices, including CIS benchmarks, container security, and cloud-native security tools.
• Experience implementing and managing security technologies such as firewalls, IDS/IPS, anti-malware solutions, vulnerability scanners, encryption technologies, and IAM platforms.
• Strong familiarity with DoD security frameworks (e.g., DoD RMF, NIST 800-53) and exposure to Impact Level (IL4, IL5, IL6) requirements.
• Excellent written and verbal communication skills, with the ability to collaborate across technical and non-technical audiences.
• Relevant cybersecurity certifications such as CISSP (or Associate CISSP), CISM, CySA+, or equivalent.
• Cloud certifications (AWS, Azure, or GCP) or security-related certifications (e.g., Security+, CCSK) are a plus.

• Experience working within a Continuous RMF (cRMF) environment or applying continuous monitoring best practices.
• Hands-on experience with cloud security tools, vulnerability management platforms, and compliance automation frameworks.
• Proven ability to communicate security risks and recommendations to both technical teams and business stakeholders.
• Ability to balance security requirements with mission needs, advising on risk-based decision-making in government or highly regulated environments.

Position may require up to 25% travel in support of contract performance, customer site visits, and program activities.

The annual salary range for this role as it is posted is $119,853 - $149,817 regardless of final candidate location within the United States. The final job level and annual salary will be determined based on the education, qualification, knowledge, skills, ability, and experience of the final candidate(s), and calibrated against relevant market data and internal team equity.