Continuous Monitoring Analyst
$62,000–$141,000 year
On-site · Rockville, Maryland, United States
Job Summary
Support an enterprise-wide ongoing authorization program to maintain Authority to Operate and Continuous Authority to Operate through continuous monitoring of security controls, evidence collection, risk tracking, and reporting. Assess control effectiveness, validate changes, support remediation, and modernize continuous monitoring across hybrid and cloud environments. Analyze changes, enforce compliance, and enable automated, risk-driven oversight; collaborate with ISSOs, system owners, and engineering teams to RMF lifecycle activities and governance initiatives.
Required Qualifications
- Bachelor’s degree or higher
- 3+ years experience with Continuous Monitoring, ongoing authorization, or cybersecurity
- Experience with NIST SP 800-53 controls
- Experience with monitoring and evidence collection from Splunk, Cribl, SentinelOne, Elastic
- Experience with Tenable, Prisma, Git, JFrog, AWS Security Hub, Azure Security Tower, Google SCC tools
- Experience with reviewing POA&Ms, remediation evidence, tracking actions in ServiceNow or JCAM
- Experience with analyzing system changes for security impact in cloud/hybrid environments
- Experience with security automation/orchestration using Kubernetes, Docker, Terraform, Ansible
- Knowledge of IAM and access control concepts (Entra ID, Okta, AWS IAM, Conditional Access)
- Ability to communicate risk posture to stakeholders
- Public Trust suitability
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.