Mid-Level Cybersecurity Analyst / Security Control Assessor

Location: Remote, USA Employment Type: Full-Time Clearance: Ability to obtain and maintain a Public Trust Certification: Security+, CISSP, CISA, CGRC, CAP, CySA+, or similar certification. Company: Bubbleware Technology ----- PLEASE ALSO SUBMIT directly at https://forms.gle/o9B5FdmkY9YxYjFL6 . If you do not fill out this form, you will potentially not be considered. ------

About the Role

Bubbleware Technology is seeking a Mid-Level Cybersecurity Analyst / Security Control Assessor to support a federal cybersecurity program. This role will focus on security control assessments, federal cybersecurity compliance, vulnerability review, ATO support, POA&M development, and continuous monitoring activities. The ideal candidate has experience supporting federal systems and understands how to evaluate, document, and communicate cybersecurity risks in alignment with federal security requirements. This is a fully remote, full-time position supporting a federal contract.

Responsibilities

The Cybersecurity Analyst / Security Control Assessor will support activities such as:

• Conduct security control assessments for federal systems and applications.
• Review system security plans and related cybersecurity documentation.
• Evaluate security controls against federal requirements and NIST guidance.
• Document assessment findings and help prepare clear, detailed reports.
• Support Authorization to Operate, or ATO, activities.
• Assist with vulnerability assessments and review of security findings.
• Help develop and maintain Plans of Action and Milestones, or POA&Ms.
• Support continuous monitoring activities.
• Maintain assessment documentation, evidence, and security artifacts.
• Participate in cybersecurity working groups, technical meetings, and status discussions.
• Collaborate with system owners, technical teams, ISSOs, and federal stakeholders.
• Provide recommendations for remediation of security findings.

Required Qualifications

• 5+ years of cybersecurity, information security, IT security, or related experience.
• Experience supporting federal, government, or regulated environments.
• Familiarity with federal cybersecurity requirements and security assessment processes.
• Understanding of NIST SP 800-53 security controls.
• Familiarity with the Risk Management Framework, or RMF.
• Knowledge of FISMA cybersecurity requirements.
• Experience reviewing security documentation and assessment evidence.
• Strong technical writing, documentation, and communication skills.
• Ability to work independently in a remote environment.
• Proficiency with Microsoft Office tools, especially Word and Excel.
• Ability to obtain and maintain a federal Public Trust clearance.

Preferred Qualifications

• 5+ years of direct experience conducting security control assessments.
• Experience supporting ATO, A&A, RMF, or continuous monitoring activities.
• Experience with vulnerability scanning tools such as Nessus, Tenable, Qualys, or similar tools.
• Experience preparing or reviewing SSPs, SARs, POA&Ms, risk assessments, or control implementation statements.
• Security+ or higher cybersecurity certification.
• CISSP, CISA, CGRC, CAP, CySA+, or similar certification.
• Experience with FedRAMP, cloud security, AWS, Azure, or GCP.
• Experience with federal government contracting.
• Familiarity with DevSecOps practices.
• Experience with security compliance frameworks.
• Scripting experience with Python, PowerShell, or similar tools is a plus.
• Prior federal civilian agency experience is a plus.

Clearance Requirement This position supports a federal contract and requires the ability to obtain and maintain a Public Trust suitability determination. Existing or prior Public Trust clearance is preferred but not required unless specified by the client. About Bubbleware Technology Bubbleware Technology is a small technology consulting company supporting federal government modernization efforts. We specialize in software development, cloud solutions, data systems, geospatial applications, and federal IT delivery. Our team has deep experience supporting mission-critical federal programs and working alongside prime contractors, government stakeholders, and technical delivery teams. Equal Opportunity Employer Bubbleware Technology is an Equal Opportunity Employer. We consider qualified applicants without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other status protected by applicable law. Pay: $82,904.90 - $102,500.00 per year Benefits:

• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Work Location: Remote Apply tot his job Apply To this Job