Remote New

Journeyman Information Security Analyst

Chameleon Integrated Services
life insurance, 401(k)
United States
Mar 17, 2026
We are a growing information technology company that offers its employees a culture of success, the chance to work on revolutionary federal IT infrastructure, and the opportunity to grow alongside cutting-edge technology that is reshaping the industry. We are seeking forward thinking candidates that have strong experience in operational support and can help take to the next level in a pro-active stance. Chameleon Integrated Services has expertise in operations management, quality systems, data operations and cybersecurity.We secure some of the most sensitive data for the Department of Defense and for other U.S. federal government agencies.We are known for the great care we take with clients and employees, and we believe in promoting from within. We offer a Full Benefits package including: Competitive Employee Health Insurance options including dental 100% company paid vision plan 401K plan with generous company match and no vesting period 100% company paid life insurance 100% company paid long and short-term disability insurance Training allowance PTO and more The Position: Chameleon Integrated Services is currently looking for a remote, Journeyman Information Security Analyst to support one of our federal clients in a high-visibility federal cybersecurity ad compliance program. Due to federal contract requirements, this position requires U.S. citizenship. Lawful permanent residents (green card holders) and individuals requiring visa sponsorship are not eligible for this role. This position is contingent upon the successful award of a contract and subsequent funding. Overview: The Journeyman Information Security Analyst will conduct hands-on NIST SP 800-53 security control assessments in support of federal FISMA and RMF requirements. This role is assessment-heavy and includes discovery, control testing, evidence review, stakeholder interviews, vulnerability analysis, and production of audit-defensible documentation packages. The ideal candidate has direct experience producing SAPs, SSPs, SARs, SCTMs, and POA&Ms in federal enterprise environments. Skills & Abilities: NIST SP 800-53 security control testing and validation Development of SAPs, SSPs, SARs, and POA&Ms Evidence collection and documentation review Risk identification and findings development FISMA and RMF compliance processes FedRAMP and cloud assessment familiarity Experience with GRC tools such as ServiceNow, Qmulos, Archer, or eMASS Ability to manage multiple concurrent assessments Responsibilities: Conduct security control assessments Review and validate system documentation Perform risk and vulnerability analysis Draft and update assessment deliverables Support documentation package finalization Coordinate with system owners and stakeholders Education & Experience 5-8 years of information security or cyber risk management experience Minimum 3 years of hands-on federal or enterprise security assessment experience Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field Certs Required: Security+ CE required CISSP, CISM, CISA, CAP, CEH, GIAC, or SSCP preferred Clearance: Public Trust (or ability to obtain) The Location: Remote in the US Due to federal contract requirements, this position requires U.S. citizenship. Lawful permanent residents (green card holders) and individuals requiring visa sponsorship are not eligible for this role. This position is contingent upon the successful award of a contract and subsequent funding. "We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status" Texting Privacy Policy Message type: Informational; you will receive text messages regarding your application and potentially regarding interview scheduling. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Message frequency will vary depending on the application process.Msg & data rates may apply. OPT out at any time by texting "Stop".