2

Remote Rmf Analyst Jobs in Washington, DC (NOW HIRING)

FTE + Benefits Remote: 80% (4 days a week) Supports the FedRAMP and FISMA authorization(s) of new ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

FTE + Benefits Remote: 80% (4 days a week) Client supports the FedRAMP and FISMA authorization(s ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

FTE + Benefits Remote: 80% (4 days a week) Supports the FedRAMP and FISMA authorization(s) of new ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

FTE + Benefits Remote: 80% (4 days a week) Client supports the FedRAMP and FISMA authorization(s ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

This role involves conducting on-site and remote cyber risk assessments, developing mitigation ... Deep knowledge of NIST SP 800-30, NIST Risk Management Framework (RMF), and related federal ...

Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... Identify and assess Cloud System state, including vulnerabilities, RMF package status/accreditation ...

next page

Showing results 1-20

Remote Rmf Analyst information

See Washington, DC salary details

$44.7K

$121.6K

$159.7K

How much do remote rmf analyst jobs pay per year?

As of Jul 4, 2026, the average yearly pay for remote rmf analyst in Washington, DC is $121,566.00, according to ZipRecruiter salary data. Most workers in this role earn between $103,600.00 and $147,200.00 per year, depending on experience, location, and employer.

What is the difference between Remote Rmf Analyst vs Remote Rmf Reviewer?

AspectRemote Rmf AnalystRemote Rmf Reviewer
CredentialsTypically requires a degree in life sciences, healthcare, or related field; certifications like RAC or RAC-ML are commonSimilar credentials as Rmf Analyst, often with additional experience in review processes
Work EnvironmentPerforms analysis, risk assessments, and compliance evaluations remotely for pharmaceutical or biotech companiesFocuses on reviewing and validating RMF documents and reports remotely within regulatory teams
Employer & IndustryPharmaceutical, biotech, or medical device companiesRegulatory consulting firms, pharmaceutical companies, or biotech firms

The main difference is that Remote Rmf Analysts conduct risk assessments and analysis, while Remote Rmf Reviewers focus on reviewing and validating risk management files. Both roles require similar credentials and work in the same industry, but their responsibilities differ in scope and focus.

Can a risk analyst work remotely?

Yes, many risk analysts, including RMF analysts, can work remotely, especially with the increasing adoption of digital tools and secure communication platforms. Remote work often requires strong analytical skills, familiarity with risk management software, and the ability to collaborate virtually. However, some roles may require on-site presence for certain assessments or meetings.

How can I make 2000 a week working from home?

A Remote RMF Analyst can potentially earn $2,000 a week by working full-time hours, often 40 or more hours, and gaining specialized skills in risk management frameworks, compliance, and data analysis. Increasing income may involve obtaining relevant certifications, such as CRISC or CISA, and gaining experience to qualify for higher-paying roles or overtime opportunities.

Can you make $500,000 a year in cyber security?

Remote RMF Analysts and cybersecurity professionals can potentially earn $500,000 annually with extensive experience, specialized skills, and advanced certifications like CISSP or CISA. High salaries are typically associated with senior roles, management positions, or working for large organizations in high-cost areas, often involving complex security environments and leadership responsibilities.
What are the most commonly searched types of Rmf Analyst jobs in Washington, DC? The most popular types of Rmf Analyst jobs in Washington, DC are:
What are popular job titles related to Remote Rmf Analyst jobs in Washington, DC? For Remote Rmf Analyst jobs in Washington, DC, the most frequently searched job titles are:
What job categories do people searching Remote Rmf Analyst jobs in Washington, DC look for? The top searched job categories for Remote Rmf Analyst jobs in Washington, DC are:
NIH - Cyber Program Analyst

NIH - Cyber Program Analyst

cFocus Software Incorporated

Bethesda, MD โ€ข Remote

Full-time

Posted 4 days ago

Be an early applicant


Job description

cFocus Software seeks a Cyber Program Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 2+ years supporting federal cybersecurity programs, RMF, governance, compliance, or ISSO activities.
  • Preferred certifications include Security+, CAP, CISSP, CISM, PMP, or equivalent.
  • Knowledge of NIST RMF, NIST SP 800-53 Rev.5, FISMA, FIPS, A&A, POA&M management, SSP development, cybersecurity reporting, risk management, executive communications, ServiceNow, Microsoft Office, and cybersecurity governance.

Duties:
  • Support day-to-day program management activities, schedules, milestones, action items, and project reporting.
  • Develop weekly, monthly, quarterly, and ad hoc cybersecurity reports, executive dashboards, risk profiles, and program metrics.
  • Coordinate Program Management Plans, Project Management Plans, Integrated Master Schedules, SOPs, and other contract deliverables.
  • Support Front Door security operations by tracking requests, maintaining documentation, and coordinating issue resolution.
  • Assist ISSOs and System Owners with Assessment and Authorization (A&A) activities throughout the RMF lifecycle.
  • Develop and maintain RMF documentation including SSPs, Security Assessment Plans, Security Assessment Reports, POA&Ms, and authorization packages.
  • Monitor NIST SP 800-53 Rev. 5 security control implementation and continuous monitoring activities.
  • Track Plans of Action & Milestones (POA&Ms), risk acceptance decisions, and remediation activities.
  • Support Risk Management Strategy updates, common control libraries, and Cybersecurity Supply Chain Risk Management (C-SCRM) activities.
  • Coordinate FISMA reporting, audit responses, corrective action plans, and cybersecurity compliance activities.
  • Provide cybersecurity guidance to stakeholders regarding security requirements, documentation, and compliance obligations.
  • Analyze cybersecurity metrics and identify trends, risks, and recommendations supporting executive decision making.
  • Maintain program documentation and ensure compliance with NIH, HHS, NIST RMF, and federal cybersecurity policies.

Powered by JazzHR

trZWRcq7Pt