This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Enable Skyward Federal’s mission by guiding systems through the Risk Management Framework (RMF) and maintaining secure authorization packages for mission-critical technologies. Your work ensures Skyward platforms meet DoD cybersecurity requirements and obtain and sustain Authority to Operate (ATO) across complex classified and multi-domain environments. This role requires an active Top Secret security clearance. Qualifications - Experience implementing RMF for DoD systems aligned to NIST 800-53 and ICD 503 - Experience developing and maintaining ATO packages and RMF artifacts - Strong understanding of system architecture, authorization boundaries, and control traceability - Experience working with RMF management tools such as eMASS or Xacta - Ability to translate security controls into actionable guidance for engineering teams - Ability to operate independently and proactively manage RMF workstreams - Experience supporting JSIG-aligned classified environments - Prior experience serving as or supporting an ISSO or ISSM - Familiarity with cloud, DevSecOps pipelines, or multi-domain security environments - Experience working with DoD Authorizing Officials or Security Control Assessors - Active Top Secret clearance with SCI eligibility Requirements - Lead systems through the RMF lifecycle, supporting authorization, continuous monitoring, and ongoing compliance activities for DoD systems - Interpret and implement security requirements across NIST 800-53, ICD 503, and JSIG frameworks within real system architectures - Develop and maintain RMF artifacts and ensure traceability between system components, security controls, and supporting evidence - Partner closely with engineering, platform, and product teams to ensure system architectures and deployments align with required security controls - Guide systems through the RMF lifecycle including categorization, control implementation, assessment support, authorization, and continuous monitoring - Develop and maintain RMF documentation including System Security Plans (SSPs), POA&Ms, control narratives, and Body of Evidence artifacts - Map and validate NIST 800-53 controls against system architecture, ensuring accurate implementation and traceability - Maintain authorization packages within RMF tools such as eMASS, Xacta, similar compliance platforms, or especially with individual artifact (paper) packages - Analyze system architecture, components, and authorization boundaries to ensure RMF artifacts accurately reflect deployed technologies - Support ATO acquisition and sustainment activities for classified and mission systems - Coordinate with ISSOs, ISSMs, and Security Control Assessors during authorization and assessment activities - Track remediation activities and support continuous monitoring efforts across secure environments Benefits - Targeted Compensation: 145-165K base salary - 10% 401k match, 100% immediately vested - 100% employer-paid health, dental & vision coverage - 100% employer-paid short and long term disability benefits - 100% employer-paid life insurance policy - 20 days of flexible paid time off - 11 federal holidays and 2+ Skyward holidays - Unlimited sick & bereavement leave events - Company issued laptop, mobile phone and expense card - $5,250 per year tax-exempt educational reimbursement - $250 office set-up stipend - $50 monthly internet stipend - $60 monthly coffee budget ☕ - Additional discretionary benefits throughout the year Company Description Skyward Federal solves ultra-sensitive multi-domain challenges that others can't, primarily supporting national defense. Our mission is to enable those who protect us. We challenge the status quo and ensure our solutions have a meaningful and lasting impact to our clients' missions. We have a flexible, collaborative start-up environment, fostering innovation and teamwork. We prioritize the development of our people, knowing that our success is driven by their talent and dedication. - Impact Mission: Move fast. Execute with precision. Deliver results. - Take Initiative: Don't hesitate. Dive in. Get shit done. - Empower People: Take point. Make a difference. Feed the team. - Pursue Excellence: Stay curious. Keep improving. Push boundaries.

***This position is contingent on contract award*** Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America. RMC is hiring for a Senior Occupational Safety and Health (OSH) Specialist to support our government client. Workload is focused upon supporting the safety and health management needs of a large Federal agency, with significant presence in the Washington, DC area, as well as significant personnel distributed through the United States. This position has the ability to work remotely, in one of the following locations: Kentucky, Pennsylvania, New Jersey or New York.  Position responsibilities include: - Providing safety and health assistance to management, supervisors, employees, and collateral duty safety representatives. - Conducting incident reports and entering reports and findings into safety management systems. - Performing safety audits, inspections, and evaluations to identify potential hazards and implement corrective actions in accordance with regulatory requirements. - Providing specialty safety services and assessments addressing requirements that include ergonomics and industrial hygiene. - Developing and delivering customer training one-on-one, in groups, in classrooms, and via web-delivered media. - Providing outreach to agency employees, promoting safety awareness throughout the organization. - Investigating complaints and reports of unsafe or unhealthful working conditions; provide recommendations for abatement action; and verify completion of abatement action. - Maintaining recordkeeping for injury/illness cases in accordance with OSHA requirements.

• Leads teams with building comprehensive zero trust solutions that encompasses Users, Applications and Infrastructure • Understanding of the Agile SDLC and how SecDevOps plays a role in it • Coordinate coding and unit testing phases of system development and efforts • Manages delivery on all projects and commitments • Lead and contribute to the service delivery across multiple project phases of the software development life cycle • Serve as subject matter expert for leading Best practices across SecDevOps, CICD, Rapid Release and related end to end automation • Managing, building, configuring, administering, operating and maintaining all components that comprise the SecDevOps environment • Developing and maintaining secure deployments to AWS and multi-cloud environment and other tasks • Working with project teams to integrate their products into the Zero Trust, SecDevOps environment • Document, schedule, and executes software scans, builds and deployments. • Document Security, CM, SCM Plans, Releases and Build Procedures • Production-level experience in Infrastructure Automation using Ansible, Terraform, Docker, ECS, EKS, ECR, and Fargate • Design, configure, and support software build/deploy pipelines (CI/CD, Jenkins, Git, GitLab) • Assist with software deployment through various staged operating environments (e.g., Development, QA, Staging, Production)

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Astrolab is looking for a Cybersecurity Engineer I to support the protection of the organization’s systems, networks, and cloud services by assisting with the implementation, monitoring, and improvement of cybersecurity controls. This role helps maintain the organization’s security posture across on-premises infrastructure and cloud platforms while supporting compliance with aerospace regulatory requirements including Export Administration Regulations (EAR) and International Traffic in Arms Regulations (ITAR). The ideal candidate has 1–3 years of cybersecurity or network security experience, with exposure to enterprise-grade firewalls, Zero Trust / ZTNA security principles, and Microsoft cloud security platforms such as Azure and Microsoft 365. The role also includes cybersecurity analyst responsibilities such as monitoring security alerts, analyzing events, and assisting with incident response activities. This position works closely with IT infrastructure, engineering, and compliance teams to support secure operations and continuous security improvement. Responsibilities - Security Monitoring & Analysis - Monitor and analyze security alerts, logs, and threat intelligence from multiple security platforms - Investigate suspicious activity and potential security incidents across network, endpoint, and cloud environments - Assist with incident response including investigation, containment, documentation, and remediation activities - Perform basic threat analysis and escalate incidents when necessary - Contribute to security reporting and analysis of trends, vulnerabilities, and potential risks - Azure & Microsoft 365 Security Oversight - Assist with security monitoring and configuration of Microsoft Azure and Microsoft 365 security controls - Review alerts and security recommendations from platforms such as Microsoft Defender, Entra ID, and Microsoft 365 Security Center - Support implementation of identity protection, multi-factor authentication, and conditional access policies - Monitor access activity and investigate suspicious login or identity events - Assist with securing cloud workloads and services according to best practices - Firewall & Network Security - Assist with administration and monitoring of enterprise-grade firewall platforms used to secure the organization’s network infrastructure - Support configuration and review of firewall policies, NAT rules, and network security zones - Help maintain network segmentation and secure communication between systems and environments - Assist in analyzing firewall logs to detect unusual network activity - Zero Trust & Access Security - Support the implementation of Zero Trust Architecture and ZTNA (Zero Trust Network Access) principles - Assist with identity-based access controls and least-privilege security models - Work with infrastructure teams to implement secure remote access and authentication mechanisms - Compliance & Regulatory Support - Support cybersecurity controls required for ITAR and EAR compliance - Assist with proper handling and protection of export-controlled technical data and sensitive engineering information - Help maintain documentation and evidence needed for security audits and compliance programs - IT Service Management (ITSM) - Track security incidents, service requests, and change activities through the organization’s ITSM platform - Participate in incident, change, and problem management processes - Maintain documentation, procedures, and security knowledge base articles - Security Improvement & Risk Reduction - Assist with vulnerability remediation efforts across systems and applications - Support security assessments, system hardening initiatives, and configuration reviews - Participate in security reviews of new technologies and infrastructure changes - Contribute to continuous improvement of the organization’s cybersecurity posture Qualifications - 1–3 years of experience in cybersecurity, network security, information security role/project - Experience working with enterprise-grade firewalls and network security controls - Familiarity with Microsoft Azure and Microsoft 365 security environments - Understanding of Zero Trust Architecture and ZTNA security principles - Experience working within IT Service Management (ITSM) processes - Awareness of ITAR and EAR regulatory requirements - Strong analytical, troubleshooting, and problem-solving skills Preferred Qualifications - Experience with Microsoft Defender security tools (Defender for Endpoint, Defender for Cloud, etc.) - Familiarity with SIEM platforms or security log analysis - Exposure to NIST security frameworks (NIST 800-171 / 800-53) - Experience supporting regulated aerospace or defense environments - Knowledge of identity and access management concepts Core Competencies - Security monitoring and threat analysis - Network security and firewall management - Azure and Microsoft 365 security oversight - Zero Trust / ZTNA architecture principles - Regulatory compliance awareness (ITAR/EAR) - Incident response and security investigation - ITSM operational discipline Benefits - Join a team of best-in-class engineers building the foundation of planetary surface exploration - Equity ownership in the company - Comprehensive health benefits, including medical, dental, vision, and mental health support - 401(k) plan with company match - Flexible PTO and parental leave - Home office set up reimbursement - Fully flexible and remote friendly work environment - Weekly lunch stipend, plus complimentary snacks and beverages on-site - Once a month social hour on-site with food and drinks