Jr. Information Security Analyst

Knowledge Management, Inc. (KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements. KMI is a Minority Business Enterprise (MBE) and Small Disadvantage Business (SDB) that specializes in Logistics, Warehouse Services, Distance Learning/Training, Enterprise Solutions, Financial Management Support, Program Management, Intelligence Analysis & Threat Assessment, and Data Analytics/Operations Research. Since 1998, our solutions and services have helped our clients improve performance, drive cost and operational effectives, and map technology needs for tomorrow's requirements. Title: Jr. Information Security Analyst Location: Remote with occasional on-site support at IRS facilities (e.g., New Carrollton, MD or Washington, DC area) Position: 1 Duration: 6 month base with 2 3-month options Start date: ASAP Security Clearance: IRS Moderate Risk Public Trust (Background Investigation required) Salary: Please provide your salary requirement, C2C or 1099 hourly rate Education/Experience: Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field Certifications: Security+ CE certification required, Higher-level certifications (e.g., CISSP, CISM, CEH, CAP) preferred and may substitute for additional years of experience The Junior Information Security Analyst will assist in conducting security control assessments, collecting evidence, and supporting compliance reporting for IRS systems under FISMA requirements. This role involves hands-on support for vulnerability scanning, control validation, and POA&M tracking using tools like ServiceNow and Qmulos. The analyst will contribute to assessments of cloud platforms (PaaS, SaaS, IaaS), pipeline security in CI/CD environments, and help develop metrics and dashboards for quarterly reporting.

Required Qualifications

• 1 to 3 years of relevant professional experience in information security, cyber risk management, network defense, or cybersecurity operations
• Knowledge of FISMA, NIST Special Publications, OMB, Risk Management Framework (RMF), and ISCM Plan development
• IT security knowledge with professional certifications from ISC2, ISA, PMI, CompTIA, or SANS Institute
• Knowledge and experience with technology risk assessments covering Webservices, network appliances, and software
• Knowledge and experience with cloud systems, CSPs, and FedRAMP requirements

Security Clearance

• IRS Moderate Risk Public Trust (Background Investigation required)

Location

• Remote with occasional on-site support at IRS facilities (e.g., New Carrollton, MD or Washington, DC area)

Education

• Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field

Preferred Qualifications

• Security+ CE certification required
• Higher-level certifications (e.g., CISSP, CISM, CEH, CAP) preferred and may substitute for additional years of experience
• Knowledge of the IRS infrastructure, technologies, and general support systems
• Knowledge and experience with the IRS Enterprise Lifecycle and OneSDLC
• Knowledge of System Interconnections including VPN and other encryption technologies
• Knowledge of IRS Business Units and IT enterprise processes
• Knowledge/experience with Qmulos Q-Compliance, SharePoint, Scanning tools, ServiceNow GRC, SPLUNK
• Knowledge and experience with security architecture principles and system modeling
• Experience with end-user troubleshooting for access and permission issues in GRC workflows

Benefits: All full-time employees are eligible to participate in our benefits programs:

• Health, dental, and vision insurance
• 401(k) retirement plan
• Paid time off (PTO) and holidays
• Group Term Life and Accidental Death and Dismemberment Insurance
• Voluntary Term Life Insurance
• Short and Long-term disability insurance

Equal Employment Opportunity Statement. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. E-Verify Statement. Knowledge Management, Inc. participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, KMI is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9. Pay Transparency Non-Discrimination Provision. Knowledge Management, Inc. will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay