1

Fips Certification Analyst Jobs (NOW HIRING)

At Cyberstar, we aim to analyze and boost human and business performance through the implementation ... FIPS 199 Moderate-impact system handling CUI and PII across multiple federal bureaus. Specific ...

New

Apply Databricks Security Profile features (CIS-hardened images, FIPS 140 encryption, TLS 1.2+). * ... Microsoft Certified: Power BI Data Analyst Associate (optional but a plus) * Soft Skills * Strong ...

At Cyberstar, we aim to analyze and boost human and business performance through the implementation ... FIPS 199 Moderate-impact system handling CUI and PII across multiple federal bureaus. Specific ...

New

... FIPS 199 Moderate-impact system handling CUI and PII across multiple federal bureaus. Specific ... Deliver a formal Security Gap Analysis within 60 days and annually thereafter, conducted against ...

New

Apply Databricks Security Profile features (CIS-hardened images, FIPS 140 encryption, TLS 1.2+). * ... Microsoft Certified: Power BI Data Analyst Associate (optional but a plus) * Soft Skills * Strong ...

... analytics for test evaluation. * Support product qualification, certification, and release-to ... Familiarity with standards like FIPS 140-3, Common Criteria, or ISO/IEC 17825. * Excellent ...

Perform static analysis (e.g., PC-lint, Polyspace, Coverity) and address findings to achieve high ... certification activities (UL, FCC, CE, FIPS 140-2/-3 as applicable). Qualifications YOU MUST HAVE

... FIPS 201), and the Federal Identity, Credential, and Access Management (FICAM) architecture ... digital certificates; Inventory Management: Conducts periodic inventory of PIV Card related ...

next page

Showing results 1-20

Fips Certification Analyst information

See salary details

$16

$31

$48

How much do fips certification analyst jobs pay per hour?

As of Jul 5, 2026, the average hourly pay for fips certification analyst in the United States is $31.53, according to ZipRecruiter salary data. Most workers in this role earn between $25.24 and $35.82 per hour, depending on experience, location, and employer.

What are some common challenges faced by FIPS Certification Analysts during the certification process?

FIPS Certification Analysts often encounter challenges such as keeping up with evolving cryptographic standards, coordinating documentation with engineering teams, and managing tight project timelines. Navigating complex technical requirements from NIST and ensuring all security modules meet rigorous testing standards can be demanding. Effective communication and organizational skills are essential, as analysts frequently collaborate with multiple stakeholders, including developers, testers, and external auditors, to ensure compliance and resolve issues promptly.

What are the key skills and qualifications needed to thrive as a FIPS Certification Analyst, and why are they important?

To thrive as a FIPS Certification Analyst, you need a solid understanding of cryptographic standards, information security, and regulatory compliance, often supported by a degree in computer science or cybersecurity. Familiarity with NIST standards, FIPS 140-2/140-3 validation processes, and related tools like Cryptographic Module Validation Program (CMVP) documentation systems is crucial. Strong analytical skills, attention to detail, and effective written communication set top analysts apart when preparing certification documentation and liaising with stakeholders. These competencies are essential to ensure secure, compliant cryptographic implementations and successful certification outcomes.

What are FIPS Certification Analysts?

FIPS Certification Analysts are professionals who specialize in ensuring that products, systems, or processes comply with the Federal Information Processing Standards (FIPS), which are U.S. government standards for data security and interoperability. They support organizations in preparing for FIPS certification by interpreting technical requirements, testing cryptographic modules, and coordinating with certification bodies. Their work helps organizations meet regulatory requirements for handling sensitive government data, especially in industries such as IT, cybersecurity, and defense.

How to get FIPS certification?

FIPS certification for a Fips Certification Analyst involves ensuring that cryptographic modules and security systems comply with Federal Information Processing Standards, particularly FIPS 140-2 or FIPS 140-3. The process includes developing or testing products according to these standards, often requiring validation by a National Institute of Standards and Technology (NIST)-accredited laboratory, and submitting documentation for certification. Familiarity with cryptography, security testing, and NIST guidelines is essential for achieving FIPS certification.

Is SOC analyst a high paying job?

SOC analyst roles are generally considered well-paying within cybersecurity, with salaries often reflecting experience, certifications like CompTIA Security+ or CISSP, and the complexity of security monitoring tasks. Entry-level positions tend to have moderate pay, while experienced analysts with specialized skills can earn higher salaries, especially in industries with high security demands.

What is the difference between Fips Certification Analyst vs Fips Compliance Specialist?

AspectFips Certification AnalystFips Compliance Specialist
Required CredentialsCertifications in cybersecurity, compliance, or related fields; knowledge of FIPS standardsCertifications in compliance, security, or auditing; familiarity with FIPS requirements
Work EnvironmentTypically in IT, cybersecurity, or government agencies; focus on certification processesOften in compliance departments; focus on regulatory adherence and audits
Employer & Industry UsageUsed by government agencies, tech firms, and security organizationsCommon in regulated industries like finance, healthcare, and government

The Fips Certification Analyst primarily focuses on obtaining and maintaining FIPS certifications, ensuring products meet federal standards. In contrast, the Fips Compliance Specialist concentrates on ongoing compliance and regulatory adherence related to FIPS standards. Both roles require similar certifications and work environments but differ in their core responsibilities—certification versus compliance management.

Can a security+ certification get you a job?

A Security+ certification can help qualify candidates for entry-level cybersecurity roles, including Fips Certification Analyst positions, by demonstrating foundational knowledge of security concepts and practices. Employers often value Security+ as a baseline credential for roles involving security compliance, risk management, and security operations. However, additional experience or certifications may be required for more advanced or specialized positions.

Who provides FIPS certification?

FIPS certification is provided by the National Institute of Standards and Technology (NIST), which develops and maintains the standards. Organizations seeking FIPS certification must undergo testing by accredited laboratories to ensure compliance with NIST standards for cryptographic modules and security requirements.
More about Fips Certification Analyst jobs
What cities are hiring for Fips Certification Analyst jobs? Cities with the most Fips Certification Analyst job openings:
What are the most commonly searched types of Fips Certification Analyst jobs? The most popular types of Fips Certification Analyst jobs are:
What states have the most Fips Certification Analyst jobs? States with the most job openings for Fips Certification Analyst jobs include:
What job categories do people searching Fips Certification Analyst jobs look for? The top searched job categories for Fips Certification Analyst jobs are:
Infographic showing various Fips Certification Analyst job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 50% In-person, 25% Hybrid, and 25% Remote job distribution, with an average salary of $65,589 per year, or $31.5 per hour.

Information Assurance Support Analyst

Astrion

Rockville, MD • On-site

$100K - $115K/yr

Full-time

Posted yesterday


Job description

Overview

Information Assurance Support Analyst

LOCATION: Rockville, MD

CLEARANCE: NRC Clearance

JOB STATUS: Full-Time

TRAVEL: 10% Occasional Domestic Travel

Astrion has an exciting opportunity for a Information Assurance Support Analyst for the NRC-CPSS Contract, supporting the Civilian Division.

REQUIRED QUALIFICATIONS / SKILLS

  • BA/BS or 5 years additional equivalent experience
  • 6 years IT experience, with 4 years specialized in Information Assurance
  • Secret Clearance; the ability to obtain an NRC Security Clearance; US citizenship required
  • Must hold at least one of the following certifications: CompTIA Security+, CISSP, ISACA CISA, GIAC GSEC, GIAC GSNA, GIAC GPEN, CEH, CAP, CASP+, CRISC, or CCSK

PREFERRED QUALIFICATIONS / SKILLS

  • A strong understanding of FISMA and NIST Special Publications, especially NIST SP 800-37 and NIST SP 800-53
  • Excellent written and oral communication skills; attention to detail is a must
  • Experience with vulnerability scanning tools, such as Tenable Security Center
  • Working knowledge of DISA STIGs, SCAP content/ audit files, and CIS Benchmarks
  • Understanding of cloud service models (SaaS, PaaS, IaaS) and protections as described in FedRAMP security documentation
  • Experience reviewing FedRAMP authorization packages and understanding how to ensure customer responsibilities are addressed in accordance with the shared responsibility model
  • Experience with performing technical architecture reviews of complex systems with a strong understanding of a system's authorization
  • Knowledge of major cloud platforms (Azure/ Amazon Web Services [AWS]), virtualization, networking devices (e.g., routers and switches), web services (e.g., IIS, Apache Tomcat), network security appliances (e.g., firewalls, VPNs), databases (e.g., Microsoft SQL), and intrusion prevention/ anti-malware software
  • Knowledge of system and application security threats and vulnerabilities
  • Proficiency with Microsoft Office applications
  • Ability to prioritize and complete tasks efficiently and effectively
  • Comfortable working individually and as part of a team
  • Scripting ability (e.g., PowerShell, VBA) is a plus
  • Familiarity with the use of artificial intelligence (AI) tools such as chat technologies to enhance personal productivity

RESPONSIBILITIES

  • Work closely with all levels of personnel, including system administrators, Information System Security Officers (ISSOs), and Authorizing Official (AO), to support FISMA systems through the Security Assessment & Authorization (SA&A)
  • Assess the confidentiality, integrity, and availability impact levels of information stored, possessed, and transmitted by systems to determine the FIPS 199 security categorization
  • Develop and maintain system security documentation throughout all phases of the NIST Risk Management Framework (RMF). This includes security categorizations, digital identity risk assessments, system security plans, system policy and procedures, privacy impact assessments, contingency plans, configuration management plans, incident response plans, vulnerability assessment reports, deviation requests, and any other documents necessary to support systems' authorization and continuous monitoring
  • Analyze risks identified during security control assessments and continuous monitoring activities in accordance with NIST SP 800-30. This includes making a determination regarding the likelihood and impact of the risk being exploited, along with a supporting rationale, and providing recommendations for mitigation/remediation
  • Perform and document the results of vulnerability scans and configuration compliance checks against configuration standards such as DISA STIGs and CIS Benchmarks
  • Analyze FedRAMP security packages to document and assess customer responsibility for cloud-based
  • Assist in the review of monthly continuous monitoring deliverables produced by Cloud Service Providers (CSPs) and annual assessments (produced by third party assessors [3PAOs]) in support of FedRAMP requirements to ensure that cloud services maintain an appropriate risk
  • Create, track, and manage system Plans of Action and Milestones (POA&Ms)
  • Attend project meetings and collaborate with stakeholders to ensure security is addressed throughout the entire system lifecycle

#CJ