SkillBridge Opportunity: Cybersecurity (RMF & Compliance)

Headquartered in Washington, DC, Versar Global Solutions provides full mission lifecycle solutions for challenges faced by our government and commercial Customers in the natural, built, and digital environments. With nearly 1,600 team members around the world, and a rich legacy spanning more than 50 years, Versar Global Solutions delivers a broad array of planning, analysis and risk management solutions, project and program management, operations and maintenance services, and information technology applications for environmental management and remediation projects, mission critical facilities and installations, and in support of readiness and contingency operations.

Versar is seeking a Cybersecurity professional with experience in Risk Management Framework (RMF), compliance standards, and security governance to join its SkillBridge Internship Program. This internship provides transitioning service members hands-on civilian experience supporting the design, implementation, and continuous monitoring of cybersecurity controls, while helping ensure compliance with federal and industry standards such as NIST, FedRAMP, SOC 2, ISO 27001, and CMMC. The ideal candidate has experience or exposure to developing RMF artifacts, managing security tools, and supporting authorization processes.

• Support and execute the Risk Management Framework (RMF) lifecycle
• Develop, manage, and maintain RMF documentation and artifacts, including:
• System Security Plan (SSP)
• Security Assessment Plan (SAP)
• Plan of Action and Milestones (POA&M)
• Continuous Monitoring Strategy
• Privacy Impact Assessments (PIA)
• Contingency Plans
• Perform security control assessments aligned with NIST SP 800-53
• Assist in system authorization and ATO packages

• Develop, review, and update cybersecurity policies, procedures, and standards
• Ensure alignment with: 
  • NIST frameworks and guidance
  • CMMC, SOC 2, ISO 27001
  • FedRAMP requirements
• Support audits, assessments, and compliance reporting activities
• Support risk management and incident response

• Work with and manage security tools and platforms such as: 
  • SIEM solutions (e.g., Splunk, Microsoft Sentinel, ACAS, Tanium)
  • eMASS, Xacta for RMF documentation and tracking
• Monitor system security posture and support continuous monitoring activities
• Analyze security events and support incident response efforts as needed

• Support security compliance for cloud environments (AWS, Azure, or GCP)
• Implement and assess cloud security controls aligned with FedRAMP/NIST guidance
• Collaborate with engineering teams to enforce secure configurations

• CompTIA Security+ CE | Certified in Governance, Risk and Compliance (CGRC) | CompTIA Advanced Security Practitioner (CASP+)
• Bachelor’s degree in Cybersecurity related fields OR 3–5+ years of experience in cybersecurity, compliance, or risk management roles
• Strong analytical and problem-solving abilities
• Excellent written and verbal communication skills
• Ability to work independently and collaboratively in a team environment
• Detail-oriented with a focus on compliance, accuracy and completeness
• Must possess at least a Secret clearance 
• Must be proficient in English, both written and verbal, to ensure effective communication and collaboration.
• Comply with company drug and alcohol policy.
• Be authorized to work in the US or will be authorized by the successful candidate’s start date.

• Security management of cloud environments (Azure, AWS etc.)
• RMF system of records management, EMASS/XACTA
• Security tools operations SIEM solutions (e.g., Splunk, MS Sentinel, ACAS, Tanium)
• Additional certifications such as CISSP, CISM, or CCSP
• Familiarity with DevSecOps and automated compliance tooling

The position will primarily work a hybrid scheduled with 50% of the work week to be spent at Newport News, VA. 

This opportunity may align well with service members from cyber, information assurance, network defense, communications, or information technology backgrounds.

• Air Force: 1D7X1
• Army: 17C, 17A, 17D
• Navy: CWT, 1840
• Marine Corps: 1721, 0671
• Space Force: 5C0X1
• Coast Guard: CMS, IT

Versar Global Solutions is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws.

Versar Global Solutions complies with applicable state and local laws governing non-discrimination in employment in every location in which the company operates. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Versar Global Solutions expressly prohibits any form of unlawful employee harassment based on race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran. Improper interference with the ability of Versar Global Solutions employees to perform their job duties is not tolerated.

* This internship is intended to provide transitioning service members with hands-on civilian experience through the SkillBridge program. SkillBridge FAQs: https://www.skillbridge.mil/faq

#LI-WJ1