[Remote] Cybersecurity Analyst, IT Operations

Note The job is a remote job and is open to candidates in USA. Fors Marsh is a team of researchers, strategists, and communicators dedicated to driving lasting change. They are seeking a detail-oriented Cybersecurity Analyst to support enterprise security operations and ensure compliance with federal frameworks. The role involves monitoring security events, managing vulnerabilities, and collaborating with IT and business teams to protect sensitive data. Responsibilities Support the implementation, monitoring, and enforcement of security controls aligned with NIST SP 800-171, NIST SP 800-53, and CMMC Level 2 requirements Monitor security events and alerts across enterprise systems (e.g., SIEM, endpoint detection, network devices) and perform incident triage, investigation, and response Assist in maintaining and securing Windows-based enterprise environments, including Active Directory, servers, and endpoints Conduct vulnerability scanning and remediation tracking, including prioritization of findings based on risk and compliance impact Support the protection, processing, and storage of Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) in accordance with company policy and contractual requirements Support and enforce organizational data classification policies, including identification, labeling, and handling of FCI, CUI, and other sensitive data types Ensure appropriate access controls, data handling procedures, and system protections are applied based on data classification levels Collaborate with IT and business teams to ensure systems and workflows properly segregate and protect sensitive data in secure environments Assist in monitoring and validating that CUI is restricted to authorized systems and not stored on end-user devices outside approved environments Participate in internal and external security assessments (e.g., CMMC, IRS Pub 4812, RMF, and client audits) by gathering evidence and supporting control validation Maintain documentation for security controls, system configurations, and procedures to ensure audit readiness Assist in mapping technical controls and remediation efforts to applicable compliance frameworks Work closely with IT operations, system administrators, and leadership to address security risks and operational issues Communicate security risks and recommendations clearly to both technical and non-technical stakeholders Promote user awareness of data handling expectations, including proper treatment of FCI and CUI in daily operations Skills Bachelor's degree from an accredited college or university in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related field Relevant industry certifications such as Security+, CISSP, CISM, GSEC, CySA+, CEH Minimum of 7 years of progressively responsible experience in cybersecurity, information security, systems administration, network security, risk management, or a related IT discipline. Experience supporting security operations, incident response, vulnerability management, compliance, or security engineering in an enterprise environment Experience implementing or supporting security requirements aligned with frameworks such as CMMC, NIST 800-53, NIST 800-171 and Cybersecurity Framework (CSF), ISO 27001, CIS Controls, or similar standards Experience with security technologies such as SIEM platforms, endpoint detection and response (EDR), vulnerability scanning tools, identity and access management solutions, firewalls, and multifactor authentication technologies. Experience analyzing security logs, alerts, and incidents using tools with Nessus, Tenable or similar solutions Ability to work on occasion in the Arlington, VA area Applicants will be subject to a government security investigation and must meet eligibility criteria for access to sensitive information Must be a U.S. Citizen and consent to a full background check due to our federal contract requirements Benefits Top-tier health, dental, vision, and long and short-term disability coverage. Our company culture, which values balance and allows each employee to take leave as they require it to balance the responsibilities of both their work and home lives without worrying about depleting their available leave hours. A floating holiday bank so you can celebrate the days you value. Generous matching retirement contributions and no vesting period starting the third month of employment. Dedicated training and development budgets to expand your expertise and grow your skillset. You can volunteer your way with paid time off. You can participate in Fors Marsh staff-led affinity groups. Our employees receive product and service discounts through the certified B Corp network. Company Overview We exist to drive lasting change. We view problems through a lens of humanity, evidence, and possibility. It was founded in 2002, and is headquartered in Arlington, Virginia, USA, with a workforce of 201-500 employees. Its website is https//www.forsmarsh.com/.

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...