Cyber Security Analyst – Intermediate

Overview

The Government Publishing Office (GPO) SecDevOps program provides advanced security, development, and operations support to safeguard federal information systems and infrastructure. This initiative integrates cybersecurity best practices with agile development and IT operations to ensure continuous security, compliance, and resilience across GPO’s enterprise IT services. The mission is to protect and enable GPO’s digital transformation by delivering secure, scalable, and reliable IT services in alignment with federal cybersecurity mandates and operational excellence standards.

DecisionPoint Corporation is seeking a Cyber Security Analyst – Intermediate to support both cybersecurity governance and operational defense. This position functions as an RMF/A&A and TRM specialist, while also delivering frontline SOC support through Microsoft Sentinel dashboard monitoring and custom alerting. The Cyber Security Analyst - Intermediate contributes to GPO’s cybersecurity posture by educating internal teams on Microsoft Azure and M365 security services, and by generating critical RMF documentation and alerting logic to improve incident detection and response.

Location: Remote – candidates located in the Washington, DC metropolitan area (DMV) are highly preferred.

Clearance Requirement: Must be able to obtain and maintain a Public Trust clearance.

Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.

*Please Note: This requisition is contingent upon contract award.*

Duties & Responsibilities

The Cyber Security Analyst - Intermediate will: 

• Assist in authoring and maintaining RMF artifacts such as System Security Plans (SSPs), Security Assessment Reports (SARs), and POA&Ms. 

• Support Technical Reference Model (TRM) documentation updates and alignment with evolving enterprise security tools and frameworks. 

• Track and document control implementations for FISMA and NIST SP 800-53 compliance using tools such as Xacta or SharePoint. Assist in troubleshooting availability or access issues across cybersecurity infrastructure in emergency scenarios. 

• Monitor Microsoft Sentinel dashboards for real-time alerts, anomalies, and incidents. 

• Develop and tune custom KQL-based detection rules and alerting logic. 

• Triage security events and escalate critical issues to senior SOC analysts as appropriate. 

• Develop and deliver internal training materials and knowledge-sharing sessions focused on Microsoft Azure and M365 security features (e.g., Conditional Access, Defender for Office 365, Identity Protection). 

• Provide one-on-one or group support to GPO IT staff on best practices for secure configuration and monitoring within Microsoft cloud environments. 

Qualifications

• Minimum Experience: 4 years of experience in cybersecurity analysis, SOC operations, or RMF compliance roles. 

• Minimum Education: Bachelor’s degree in Computer Science, Information Systems, other related disciplines (or equivalent experience) 

• Technical Knowledge: Proficiency with Microsoft Sentinel, Azure Security Center, and Microsoft 365 security tools. Solid understanding of NIST RMF, FISMA requirements, and technical security documentation.  

• Federal experience (preferred) 

• Certifications (preferred): CompTIA Security+, CySA+, or Microsoft Certified: Security Operations Analyst Associate (SC-200) 

Our Equal Employment Opportunity Policy

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.

Responsibilities

The Cyber Security Analyst - Intermediatewill: 
- Assist in authoring and maintaining RMF artifacts such as System Security Plans (SSPs), Security Assessment Reports (SARs), and POA&Ms. 
- Support Technical Reference Model (TRM) documentation updates and alignment with evolving enterprise security tools and frameworks. 
- Track and document control implementations for FISMA and NIST SP 800-53 compliance using tools such as Xacta or SharePoint.Assist in troubleshooting availability or access issues across cybersecurity infrastructure in emergency scenarios. 
- Monitor Microsoft Sentinel dashboards for real-time alerts, anomalies, and incidents. 
- Develop and tune custom KQL-based detection rules and alerting logic. 
- Triage security events and escalate critical issues to senior SOC analysts as appropriate. 
- Develop and deliver internal training materials and knowledge-sharing sessions focused on Microsoft Azure and M365 security features (e.g., Conditional Access, Defender for Office 365, Identity Protection). 
- Provide one-on-one or group support to GPO IT staff on best practices for secure configuration and monitoring within Microsoft cloud environments.