​This is a Remote, Funded position that supports both federal and commercial customers, specifically in the domains of Industrial Control Systems (ICS) and the Internet of Things (IoT). As a subsidiary of Goldbelt, Inc., Peregrine focuses on high-stakes cybersecurity and operational technology (OT) environments. In this role, you will be the primary technical analyst responsible for ensuring that classified and mission-critical systems meet the strict DCSA (Defense Counterintelligence and Security Agency) and NIST RMF standards.

• ​Requisition ID: 18508
• ​Salary Range: $60,000 – $65,000 annually
• ​Clearance: Active Secret (required)
• ​Travel: 50% (CONUS and OCONUS)
• ​Location: Remote Hire

​Key Responsibilities: RMF and A&A Support

​This role is centered on the Assessment and Authorization (A&A) lifecycle, ensuring that IT and OT systems are authorized to operate.

​RMF and DAAPM Compliance

​You will be responsible for maintaining an expert-level understanding of the Defense Security Service (DSS) Assessment and Authorization Process Manual (DAAPM). This manual is the primary guide for implementing the Risk Management Framework (RMF) within the National Industrial Security Program (NISP). You will guide systems through the six-step RMF process—from categorization to continuous monitoring—to obtain and maintain an Authorization to Operate (ATO).

​Artifact Evaluation and System Testing

​A core part of your day involves reviewing A&A artifacts—technical documents like System Security Plans (SSP), Risk Assessment Reports (RAR), and Plan of Action and Milestones (POA&M). You will evaluate these packages for authorization against government technical standards and conduct security product evaluations to ensure new technologies don’t introduce unacceptable risk to the environment.

​Network and Systems Analysis

​Beyond documentation, you will perform active network and systems security analysis. This includes reviewing metric collection methods used by the NISP Authorization Office (NAO) and proposing functional improvements to existing security methodologies. Your analysis ensures that the security controls selected (based on NIST SP 800-53) are implemented correctly and remain effective.

​Required Qualifications and Skills

​Peregrine requires a certified professional who is ready to travel and work within classified government frameworks.

• ​Experience: Minimum of 3 years in Information Security.
• ​Certification: IAT Level II is mandatory (e.g., Security+ CE, CCNA Security, or CySA+).
• ​Clearance: You must possess an active Secret Clearance and be a U.S. Citizen.
• ​Technical Knowledge: Deep familiarity with DAAPM, RMF, and NIST 800-53 controls.
• ​Travel: Must be willing to travel up to 50% of the time, including potential international (OCONUS) locations.

​Preferred Qualifications

• ​IAT Level III (e.g., CASP+, CISSP) is highly preferred and may lead to higher responsibilities.
• ​Bachelor’s Degree in IT or Cybersecurity.

​Summary of Role Impact

​Peregrine serves as a thought leader in Industrial Control Systems (ICS) and Operational Technology (OT) security. As an Information Security Analyst, your work ensures that the critical infrastructure and classified systems supporting federal missions remain secure against evolving cyber threats. By meticulously documenting and testing security safeguards, you provide the “assurance” that enables government agencies to utilize transformative technology while staying within the guardrails of national security policy.