GRC Security Analyst (Top Secret Clearance)

Appian’s Customer Success team partners with federal customers to advise and assist them in designing and securing Appian-based solutions. To support this mission, we are looking for an early career Governance, Risk & Compliance (GRC) Security Analyst to help federal customers establish cybersecurity strategies and high-level designs for both private cloud and on-premise deployments. This role also involves learning how to guide customers through the government’s IT security authorization process.

The ideal candidate is passionate about cybersecurity and eager to learn how to architect secure solutions for federal customers. You will gain hands-on experience with cloud platforms like Amazon Web Services (AWS) and Microsoft Azure, and assist in designing end-to-end managed services provided by the government. A willingness to dive into the NIST Risk Management Framework (RMF) and Authority to Operate (ATO) processes is essential, as you will support the development of System Security Packages (SSPs) and learn how to navigate RMF procedures under the guidance and mentorship of a senior cyber advisor. .

This is a great opportunity for someone looking to start a career in cybersecurity, with training and mentorship provided to help you build the foundational knowledge and skills needed for long-term success.

This role is based at Appian's Headquarters in McLean, VA. Employees hired for this position are required to hold Government Security Clearances and will have the opportunity to work in a flexible, hybrid environment. If you are not already located in the surrounding McLean, VA area, your willingness to relocate will be a contingency for this position.

To be successful in this role, you need:

As an early career Governance, Risk & Compliance (GRC) Security Analyst at Appian, you will assist in implementing the Risk Management Framework (RMF) to secure Appian-based solutions for federal customers. Your responsibilities will include:

• Learning and Applying RMF Processes: Gaining hands-on experience with the RMF steps, including system categorization, security control selection, implementation, assessment, authorization, and continuous monitoring.
• Supporting ATO and FedRAMP Authorization: Assisting in the preparation of Authorization to Operate (ATO) packages and understanding the FedRAMP authorization process to ensure compliance with federal security standards (FedRAMP).
• Collaborating with Senior Analysts: Working closely with experienced security analysts to design and implement security solutions that meet federal requirements.
• Continuous Learning: Staying updated on the latest federal cybersecurity policies and best practices to effectively support the security authorization process.

Basic qualifications:

• Bachelor’s degree in any Engineering discipline, Computer Science, Mathematics, Information Technology, or similar work
• An Active Government Clearance (Top Secret and above, without any limitations) is required for this opening
• Ability and interest to maintain an Active TS:SCI Clearance (CI or FSP), with the ability and willingness to perform work within cleared facilities (SCIF work is required)
• You are an expert IT systems administrator building, maintaining, scripting, patching, & managing hosts, databases, and interconnected Cloud services with approximately 2 years of experience