Senior Cybersecurity Analyst
Senior
Application Security
Azure DevOps
CI/CD
Cloud
Cloud Native
Cloud Platform
Cloud Platforms
Collaboration
Containerization
Cybersecurity Tools
DevOps
DevSecOps
Docker
Information Security
Information Technology (IT)
InfoSec
Issue Tracking
IT Audit
Kubernetes
Security
Security Compliance
Security Testing
Software Development
Job Description
GovCIO seeks a Senior Cybersecurity Analyst to support the U.S. Coast Guard Software Yard Capability Development Branch. The role focuses on securing, maintaining, and ensuring regulatory compliance across the continuous software delivery lifecycle for mission software and platforms. This hybrid position is based in Kearneysville, West Virginia.
Responsibilities
- Enforce federal security standards, baselines, and DISA STIGs across all software product teams and continuous delivery workflows.
- Conduct proactive vulnerability monitoring, security testing, and risk assessments to support modernization and reduce technical debt.
- Collaborate with government technical leadership and vendor-driven product teams to ensure capabilities meet stringent cybersecurity engineering requirements.
- Oversee vulnerability remediation and coordinate with engineering teams to address software defects, performance bottlenecks, and security gaps.
- Audit and validate product backlogs and release plans to ensure security requirements are integrated, traced, and prioritized alongside mission needs.
- Assess architectural coherence and security posture across multiple technology domains to minimize brittle or siloed systems.
- Maintain comprehensive cybersecurity documentation, including system security plans, risk mitigation logs, and standard operating procedures for release train management.
- Provide expert cybersecurity guidance to product owners and development teams to enable rapid responses to evolving digital mission threats.
Requirements
- DoD 8570 IAT Level II certification, such as Security+ CE, CySA+, or CCNA Security.
- Cybersecurity analysis experience specializing in application security, software assurance, or cloud security within a federal environment.
- Proven experience analyzing and remediating vulnerabilities identified by automated scanning tools within modern CI/CD software delivery models.
- Comprehensive operational understanding of DISA STIGs, NIST RMF, and federal authorization boundaries.
- Strong experience embedding security requirements into Agile engineering frameworks, product backlogs, and rapid-release environments.
- Proficiency tracking, managing, and reporting cyber risks using enterprise tools (for example Jira, Azure DevOps, Tenable Security Center, ServiceNow).
- Strong foundational understanding of diverse IT domains, including enterprise environments.
Technologies
- Kubernetes
- Docker
- Jira
- Azure DevOps
- Tenable Security Center
- ServiceNow
- AWS
- Azure
Qualifications
- Education: High School diploma is required.
- Experience: 9+ years in relevant cybersecurity roles, or commensurate experience.
Salary
Posted range: USD 112,000.00 - USD 142,000.00 per year.
Preferred Skills and Experience
- Experience supporting U.S. Coast Guard, Software Yard, or Department of Homeland Security programs.
- Familiarity with USCG PEO C5I enterprise security strategies, software assurance policies, and continuous Authority to Operate (cATO) pathways.
- Relevant professional cybersecurity certifications such as CISSP, CEH, CISM, or DevSecOps security credentials.
- Understanding secure containerization concepts (Kubernetes, Docker) and automated security gating within DevSecOps environments.
- Familiarity with hybrid-cloud architecture (AWS, Azure) and securing web applications against OWASP Top 10 vulnerabilities.