STIG Compliance Analyst

peraton· Information Technology
Apply Now ↗
📍 Herndon, VA, USFULL TIME

About this role

Responsibilities

We are seeking a highly skilled and innovative STIG Compliance Analyst to join our team in the greater DMV area, supporting the Army National Guard.

 

Responsibilities

  • Review system configurations and validate security settings to enforce DISA STIG/SRG hardening across servers, workstations, applications, and network devices.
  • Conduct STIG assessments using approved tools (STIG Viewer, ACAS), identify non‑compliant configurations, and record findings per DoD/Army/RMF requirements.
  • Apply configuration updates and hardening measures, coordinate remediation with system administrators, and validate post‑remediation compliance.
  • Maintain authoritative STIG checklists, version control, change logs, and configuration baselines to support auditability.
  • Upload compliance artifacts, evidence, and updated checklists into eMASS and enterprise tracking tools; support POA&M creation and tracking.
  • Produce routine compliance reports, vulnerability summaries, and dashboards to support CCRI readiness and continuous monitoring.
  • Perform configuration audits across dev/test/staging/production environments and verify adherence to RMF control requirements.
  • Collaborate with ISSOs, cybersecurity teams, engineers, and system owners to interpret STIG guidance and resolve recurring compliance issues.
  • Contribute to process improvement by refining hardening procedures, documentation, and automated validation workflows.

#ENOCS

 

Qualifications

Qualifications

  • 2 years with BS/BA; 0 years with MS/MA; 6 years with no degree

  • Clearance: Active TS/SCI clearance.

  • Candidate must meet ONE of the following:

    • Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field; OR
    • Relevant professional certification or equivalent experience (examples: CGRC (CAP); CySA+; CompTIA CASP+); OR
    • Relevant DoD/military training (examples: DISA ACAS / STIG Viewer training).

  • Required experience and skills:

    • Hands‑on STIG compliance, system hardening, or cybersecurity operations experience.
    • Practical experience using DISA STIG Viewer, ACAS/Nessus scanning, and eMASS or equivalent RMF evidence/workflow tools.
    • Strong ability to apply STIG/SRG configurations, document findings, validate remediation, and maintain configuration baselines.
    • Proficiency producing compliance reports, dashboards, and evidence packages to support inspections and accreditation.
    • Good collaboration and communication skills to work with system owners, ISSOs, and engineering teams.

  • Desired:

    • Prior DoD/ARNG STIG/CCRI support experience and familiarity with multi‑domain (NIPR/SIPR) compliance constraints.
    • Experience automating STIG validation, configuration enforcement (e.g., via DSC/Ansible), and integrating checks into CI/CD pipelines.

#ENOCS

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$66,000 - $106,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

EEO

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.

Frequently Asked Questions

Is the salary disclosed for the STIG Compliance Analyst position at peraton?
The salary for this STIG Compliance Analyst role at peraton is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Where is the STIG Compliance Analyst position at peraton located?
This STIG Compliance Analyst role at peraton is based in Herndon, VA, US. The position is listed as on-site or hybrid. Check the full job description or apply directly to confirm the work arrangement.
Is the STIG Compliance Analyst role at peraton full-time or part-time?
This is listed as a FULL TIME position. It is posted as a STIG Compliance Analyst role in the Information Technology department at peraton.
Which team or department does the STIG Compliance Analyst at peraton belong to?
This STIG Compliance Analyst position is part of the Information Technology department at peraton. See the full job description for more information about the team structure and responsibilities.
How do I apply for the STIG Compliance Analyst position at peraton?
Click the "Apply Now" button on this page. You will be redirected to peraton's official application portal hosted on icims where you can submit your application directly.
When was the STIG Compliance Analyst job at peraton posted?
This STIG Compliance Analyst position at peraton was posted on Apr 1, 2026. Apply as soon as possible — early applications are often reviewed first.
STIG Compliance Analyst
peraton
Apply for this role ↗

You'll be redirected to peraton's official application page on icims.