Us: At Aretec, Inc., we are catalysts for change within the federal government landscape. Specializing in advanced analytics, machine learning, data analysis, cybersecurity, and business optimization, we empower federal agencies to achieve their most critical missions. As a premier partner and prime vendor, we deliver innovative, high-impact solutions that address complex challenges and drive national progress. Our commitment to excellence and innovation positions us at the forefront of transforming governmental operations, enhancing efficiency, and making a lasting difference in the lives of citizens.
You: You are a highly skilled and motivated Risk Management Analyst with extensive expertise in federal risk management, compliance standards, and cybersecurity threat analysis. You thrive on identifying risks, evaluating their potential impact, and developing strategies that safeguard critical IT systems, infrastructure, and data. With a strong understanding of NIST frameworks, FISMA, and FedRAMP compliance, you bring analytical rigor and practical solutions that align with mission objectives. You excel at collaborating with diverse stakeholders, from technical staff to federal leadership, while also working independently to deliver measurable improvements in risk posture and compliance.

What We’re Looking For: We are seeking two Risk Management Analysts who will play a pivotal role in supporting our federal partner’s cybersecurity and compliance efforts. In this role, you will:

• Leading Innovative Projects: Analyze IT systems, processes, and operations to identify risks, vulnerabilities, and threats-including cybersecurity, operational, and compliance risks.
• Collaborative Solution Development: Partner with IT teams, ISSOs, and federal stakeholders to recommend and implement mitigation strategies, policies, and controls.
• Strategic Impact: Ensure systems comply with federal standards (FISMA, NIST, FedRAMP), develop risk management strategies, and prepare risk assessments and reports for leadership.
• Stakeholder Engagement: Work closely with cross-functional teams and federal agencies to align policies and remediation efforts with broader mission objectives.
• Mentorship and Leadership: Promote risk awareness, provide training, and contribute to long-term strategies that strengthen IT resilience and security posture.

THE SKILLS WE’RE LOOKING FOR:

• Bachelor’s degree in Information Technology, Cybersecurity, or a related field
• Minimum of 7 years of experience in information security, security engineering, or a related role
• Solid understanding of cybersecurity concepts and NIST SP 800-37 Risk Management Framework
• Experience with FedRAMP compliance
• Proficiency in tools such as Splunk, Tableau, or Power BI for compliance monitoring and reporting
• Experience with risk management programs and compliance monitoring in federal environments
• Strong written and verbal communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences
• Ability to work independently and collaboratively with stakeholders across functions
• S. Citizenship with eligibility for a Public Trust clearance
• Certifications preferred: CISSP, CRISC, GCRM (or equivalent)

• Leading Innovative Projects: Analyze IT systems, processes, and operations to identify risks, vulnerabilities, and threats-including cybersecurity, operational, and compliance risks.
• Collaborative Solution Development: Partner with IT teams, ISSOs, and federal stakeholders to recommend and implement mitigation strategies, policies, and controls.
• Strategic Impact: Ensure systems comply with federal standards (FISMA, NIST, FedRAMP), develop risk management strategies, and prepare risk assessments and reports for leadership.
• Stakeholder Engagement: Work closely with cross-functional teams and federal agencies to align policies and remediation efforts with broader mission objectives.
• Mentorship and Leadership: Promote risk awareness, provide training, and contribute to long-term strategies that strengthen IT resilience and security posture