This role requires a deep working knowledge of NIST RMF, FISMA, and the NIST SP 800 series, particularly as they apply to mission-critical tactical platforms and embedded systems. You will translate ...
This role requires a deep working knowledge of NIST RMF, FISMA, and the NIST SP 800 series, particularly as they apply to mission-critical tactical platforms and embedded systems. You will translate ...
Experience with NIST RMF, security controls, vulnerability management, and compliance documentation. * Familiarity with eMASS, STIGs, POA&M management, and secure engineering practices. * Experience ...
Experience with NIST RMF, security controls, vulnerability management, and compliance documentation. * Familiarity with eMASS, STIGs, POA&M management, and secure engineering practices. * Experience ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information System Security Engineer with Security Clearance
Colorado Springs, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. Perform technical security ...
New
Information System Security Engineer with Security Clearance
Colorado Springs, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. Perform technical security ...
New
Information Systems Security Engineer (ISSE)
Colorado Springs, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information Systems Security Engineer (ISSE)
Colorado Springs, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Security Engineer
Mclean, VA · On-site
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
Security Engineer
Mclean, VA · On-site
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
Provide RMF process subject matter expertise across all FISMA-reportable systems * Conduct SCA per NIST 800-53A, OMB A-130, OMB A-123, and client policies and schedules; report control gaps or ...
Provide RMF process subject matter expertise across all FISMA-reportable systems * Conduct SCA per NIST 800-53A, OMB A-130, OMB A-123, and client policies and schedules; report control gaps or ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Information Systems Security Engineer (ISSE)
Denver, CO · On-site
$154K - $192K/yr
Engineer, implement, and validate security controls in accordance with NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. * Perform technical security ...
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
Security Analyst II
Madison, WI · On-site
Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards. * Experience and working knowledge of common security frameworks and control theories to include current ...
Security Analyst II
Madison, WI · On-site
Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards. * Experience and working knowledge of common security frameworks and control theories to include current ...
Security Engineer
Mclean, VA · On-site
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
Security Engineer
Mclean, VA · On-site
Lead and support FedRAMP Moderate/High and IC ATO authorization efforts, ensuring compliance with NIST RMF, NIST 800-53, NIST 800-37, FedRAMP, and ICD 503 requirements. * Conduct risk assessments ...
ISSO (Top Secret Cleared)
Farmington, NM · On-site
$120K - $132K/yr
This role is responsible for ensuring systems meet federal cybersecurity and compliance requirements (NIST RMF, FISMA, FedRAMP as applicable) and for coordinating with system owners, engineers, and ...
ISSO (Top Secret Cleared)
Farmington, NM · On-site
$120K - $132K/yr
This role is responsible for ensuring systems meet federal cybersecurity and compliance requirements (NIST RMF, FISMA, FedRAMP as applicable) and for coordinating with system owners, engineers, and ...
Develop, implement, review, and maintain IT security controls in accordance with NIST SP 800-53, RMF, and agency security policies. * Support the preparation, review, and submission of Security ...
Develop, implement, review, and maintain IT security controls in accordance with NIST SP 800-53, RMF, and agency security policies. * Support the preparation, review, and submission of Security ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Ensure assigned systems remain aligned with NIST RMF, NIST SP 800-53, FISMA, and agency cybersecurity requirements. * Support and maintain reporting dashboards, status tracking, and collaboration ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Ensure assigned systems remain aligned with NIST RMF, NIST SP 800-53, FISMA, and agency cybersecurity requirements. * Support and maintain reporting dashboards, status tracking, and collaboration ...
Security Analyst -II
Madison, WI · On-site
At least 2 years of experience required in the following: · Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards. · Experience and working knowledge of ...
Security Analyst -II
Madison, WI · On-site
At least 2 years of experience required in the following: · Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards. · Experience and working knowledge of ...
IA frameworks (NIST RMF, FISMA, NIST SP 800 series) into clear, actionable outputs for UK Government stakeholders • Provide analytical assurance support to ensure outputs are coherent, complete ...
IA frameworks (NIST RMF, FISMA, NIST SP 800 series) into clear, actionable outputs for UK Government stakeholders • Provide analytical assurance support to ensure outputs are coherent, complete ...
... NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. • Perform technical security analyses including architecture reviews, vulnerability assessments ...
... NIST RMF, NIST SP 800-53, CNSSI 1253, DoD guidance, and organizational cybersecurity policies. • Perform technical security analyses including architecture reviews, vulnerability assessments ...
IA frameworks (NIST RMF, FISMA, NIST SP 800 series) into clear, actionable outputs for UK Government stakeholders Provide analytical assurance support to ensure outputs are coherent, complete, and ...
IA frameworks (NIST RMF, FISMA, NIST SP 800 series) into clear, actionable outputs for UK Government stakeholders Provide analytical assurance support to ensure outputs are coherent, complete, and ...
Knowledge of DoD cybersecurity frameworks (NIST, RMF). DoD 8570/8140 certification (e.g., Security+, CISSP). Preferred Qualifications: Experience supporting DoD cybersecurity programs. Familiarity ...
Knowledge of DoD cybersecurity frameworks (NIST, RMF). DoD 8570/8140 certification (e.g., Security+, CISSP). Preferred Qualifications: Experience supporting DoD cybersecurity programs. Familiarity ...
Nist Rmf information
See salary details
$43K - $52.7K
1% of jobs
$52.7K - $62.5K
6% of jobs
$62.5K - $72.2K
10% of jobs
$78.8K is the 25th percentile. Wages below this are outliers.
$72.2K - $81.9K
12% of jobs
$81.9K - $91.6K
15% of jobs
The median wage is $95.8K / yr.
$91.6K - $101.4K
15% of jobs
$101.4K - $111.1K
10% of jobs
$115.3K is the 75th percentile. Wages above this are outliers.
$111.1K - $120.8K
16% of jobs
$120.8K - $130.5K
7% of jobs
$130.5K - $140.3K
5% of jobs
$140.3K - $150K
3% of jobs
$43K
$99.4K
$150K
How much do nist rmf jobs pay per year?
What is NIST RMF?
What is the difference between Nist Rmf vs Cybersecurity Analyst?
| Aspect | Nist Rmf | Cybersecurity Analyst |
|---|---|---|
| Certifications | Risk Management Framework (RMF) certifications, NIST guidelines | CompTIA Security+, CISSP, CEH |
| Work Environment | Government agencies, federal projects, compliance-focused | Private sector, IT departments, security teams |
| Industry Usage | Primarily in federal and defense sectors | Across various industries including finance, healthcare, tech |
| Primary Focus | Implementing and managing risk management frameworks | Monitoring, analyzing, and responding to security threats |
While Nist Rmf specialists focus on establishing and maintaining risk management processes based on NIST standards, Cybersecurity Analysts are more involved in threat detection and incident response. Both roles require security knowledge but serve different functions within cybersecurity frameworks.
What are some typical challenges faced by professionals implementing the NIST RMF in an organization?
What are the key skills and qualifications needed to thrive as a NIST RMF (Risk Management Framework) specialist, and why are they important?

Full-time
Posted 14 days ago
Job description
Cruz Associates Inc. of Yorktown, VA (www.cruzinc.us) has an open position for a Information Systems Security Officer (ISSO). The job location is at Fort Campbell, KY. Interested candidates can apply at the following link: Information Systems Security Officer (ISSO), by completing the application and uploading their resume.
Scope: Cruz Associates, Inc. is seeking an Information Assurance (IA) professional to serve as a primary technical liaison, specifically requiring a deep regulatory background to confidently address and resolve rigorous compliance inquiries using U.S. security frameworks. This role requires a deep working knowledge of NIST RMF, FISMA, and the NIST SP 800 series, particularly as they apply to mission-critical tactical platforms and embedded systems. You will translate complex U.S. technical artifacts into clear assurance narratives, engage directly with original equipment manufacturers (OEMs), and senior leadership. The ideal candidate has experience working across allied government security frameworks and can confidently defend U.S. compliance postures to foreign stakeholders.
Required Skills:
- Deep working knowledge of U.S. information assurance frameworks, specifically NIST RMF, FISMA, and the NIST SP 800 series.
- Proven ability to act as a technical liaison, fielding and resolving rigorous regulatory and compliance inquiries from allied partner nations.
- Experience applying IA and cybersecurity standards to mission-critical tactical platforms and embedded systems.
- Demonstrated ability to translate complex U.S. technical artifacts into clear, actionable assurance narratives for leadership.
- Strong stakeholder engagement skills, with experience coordinating directly with original equipment manufacturers (OEMs) and engineering teams.
- Exceptional verbal and written communication skills, with the confidence to defend technical compliance postures to foreign stakeholders.
- 8570 IAM Level II certification
Preferred Skills:
- Prior experience serving as an assurance liaison or integrator between the U.S. and allied government security frameworks (e.g., U.S. to U.K.).
- Familiarity with the cyber accreditation lifecycle for large-scale, complex defense platforms (such as aircraft or other major tactical systems).
- Experience supporting formal risk acceptance forums and briefing senior risk authorities.
- A risk-focused and independent mindset, with the confidence to challenge technical findings or push back on continuous inquiries when necessary.