Security Analyst / ISSO
Lynk
Full-time · Remote · US-based · Senior level · Reports to CISO US citizenship or Lawful Permanent Resident status required. This role involves access to Controlled Unclassified Information (CUI); no security clearance required. About Lynk Lynk is building the world’s first global satellite‑to‑cellular network, enabling direct device‑to‑device (D2D) connectivity from commercial low Earth orbit (LEO) satellites to standard mobile phones, no special hardware required. We operate in a market alongside other commercial LEO constellations, satellite‑direct‑to‑cellular providers, and large‑scale broadband satellite networks, competing for the same spectrum, orbits, and government contracts. Our technology and network infrastructure are of significant interest to US government and defense customers. Protecting the integrity of that infrastructure and the Controlled Unclassified Information that flows through it is mission critical. That’s where you come in. Role Overview Reporting directly to the CISO, you’ll own Lynk’s cybersecurity compliance program across CMMC Level 2 / NIST SP 800‑171, DFARS 7012, SOC 2 Type II, and GDPR. You’ll be ISSO for CUI‑scoped systems: authoring SSPs, maintaining POA&M, running control assessments, and leading C3PAO engagement. Lynk has a functioning security toolset in place including SIEM/log management, EDR, MDM, vulnerability management and IT asset management; your job is to mature and align that stack to CMMC requirements, not start from zero. Responsibilities Own and maintain the System Security Plan (SSP) and Plan of Action & Milestones (POA&M) for all CUI‑scoped systems; always keep documentation audit‑ready. Assess all 110 NIST SP 800‑171 practices for implementation and effectiveness; map existing controls (Wazuh, ThreatDown, Tenable, ManageEngine, AD GPOs, SnipeIT) to CMMC requirements, identify gaps, and drive remediation. Maintain the organizational risk register; support ongoing Risk Management Framework (RMF) processes and report risk posture to the CISO. Lead preparation for CMMC Level 2 assessments — build evidence packages, coordinate with the C3PAO, and manage assessor requests and findings. Develop and maintain cybersecurity policies, procedures, and standards aligned to CMMC, DFARS, SOC 2, and GDPR; ensure version control and staff acknowledgment records are maintained. Define, track, and report security metrics and KPIs to the CISO and non‑technical stakeholders including legal, contracts, and business development teams. Support contract teams with DFARS clause requirements, cybersecurity representations, and customer security questionnaires. Conduct vendor and third‑party risk assessments; maintain supplier risk documentation. Manage the security awareness training program and phishing simulations; maintain completion records per CMMC requirements. Security Operations (secondary) Monitor SIEM for security events and alerts relevant to CUI systems; write and tune detection rules; triage and elevate incidents; produce post‑incident reports with compliance impact assessment. Leverage audit log aggregation to satisfy CMMC AU (Audit & Accountability) control evidence requirements. Monitor EDR alerts for CUI‑scoped endpoints; investigate detections and coordinate response with IT. Work with IT to ensure vulnerability findings are remediated within CMMC‑required timeframes, track and report on remediation status. Leverage MDM and Active Directory to enforce device compliance, GPO‑based security baselines, and access control policies across CUI‑scoped endpoints. Use asset inventory as the authoritative hardware/software asset register for CMMC system boundary documentation; keep it current and audit‑ready. Conduct periodic access control audits; enforce least‑privilege across AD, SSO, and SaaS tooling handling CUI. Required Skills and Experience 3–6 years in cybersecurity with a strong GRC or compliance focus; prior ISSO experience or equivalent accountability preferred. Deep, working knowledge of NIST SP 800‑171 and DFARS 7012. Able to assess, gap‑analyze, and evidence all 110 controls independently. Demonstrated experience authoring SSPs and POA&M for government‑facing or regulated environments. Familiarity with the CMMC Level 2 assessment process and C3PAO engagement. Hands‑on SIEM experience: writing detection rules, querying logs, and generating compliance‑grade audit evidence. Hands‑on experience with EDR and vulnerability scanning tools in a compliance context. Mapping tool outputs to NIST controls and generating assessor evidence. Working knowledge of SOC 2 Type II and GDPR compliance requirements. Some cloud security fundamentals (AWS preferred). IAM, CloudTrail, GuardDuty, access policies. Clear, structured communicator. Equally comfortable writing formal policy documentation and briefing non‑technical executives. US citizenship or Lawful Permanent Resident status. Nice to Have CMMC Registered Practitioner (RP) or Professional (CCP) CISSP / CISM / Security+ RMF / ATO experience FedRAMP familiarity Space / satellite industry background Telecom or critical infrastructure security Prior C3PAO assessment experience GRC platform experience (Vanta, Drata, Archer, ServiceNow) Scripting in Python or Bash for evidence collection automation Zero‑trust architecture What Lynk Offers Competitive salary and equity in a company building genuinely novel global infrastructure. Remote‑first, US‑based role. Direct line to the CISO; your work defines Lynk’s compliance posture at a critical growth stage. A functioning security toolset already in place. Your focus is maturing and aligning it, not standing it up from scratch. Learning and certification budget. Lynk is an equal opportunity employer. This position requires US citizenship or Lawful Permanent Resident status due to access to Controlled Unclassified Information. #J-18808-Ljbffr Lynk
$65 - $75 per hour
...the job poster from Insight Global Title: Senior Information Security Analyst Location: 100% Remote Pay Rate: $70-$75/hr Key Responsibilities... ...ago AWS Security Engineer, Information System Security Officer (ISSO) United States $80,000.00-$128,000.00 2 weeks ago Business...SuggestedContract workRemote work$100k - $140k
...Shachar (ex-Palo Alto Networks, AWS, Demisto) and Dan (ex-Abnormal Security, Twitter) have previously built, launched, and scaled... ...expanding customer base. Job Overview We're looking for a Security Analyst to be at the core of what we do: reviewing real security cases...Suggested- ...worldwide. We are a leading provider of emergency medical and security solutions for corporations and individuals. Our 24/7 Operations... ...organization. Position Overview Global Security Operations Center (GSOC) Analyst will be responsible for handling the day‑to‑day operations of...SuggestedFull timeWorldwideShift work
- ...on threat detection, analysis, and incident response Aligned with the latest CompTIA CySA+ CS0-003 exam objectives Ideal for security analysts and blue team professionals Practical, scenario-driven and SOC-focused training 75% of our learners achieve career transition...Suggested
- Exciting Security / Soc Analyst III, 6 months contract opportunity in Houston, TX. 5 plus years experience in the security domain, Incident Response, threat monitoring, and handling incidents (incident triage and response) Determine detection requirements for data sources...SuggestedContract work
- ## Security AnalystApplyremote type: Hybridlocations: Bridgeville, PA: Holmdel, NJ: Englewood, COtime type: Full timeposted on: Posted... ...discover if you see yourself joining our team as our newest Security Analyst.**SUMMARY**We are seeking a dynamic and experienced Security...Work at officeLocal areaFlexible hours
$60k - $80k
Overview Under the direction of the Security Operations Lead, the Security Analyst plays a key role in supporting and enhancing the organization’s cybersecurity posture. This position is responsible for administering boundary and security services across the IT environment...Full timeRemote work- We’re hiring for an OT Security Analyst to work out of our Corporate Office in Houston while working a Hybrid work schedule. Noble is a leading offshore drilling contractor. We own and operate one of the most modern and technically advanced fleets. Noble has been engaged...Contract workFor contractorsWork at officeWorldwide
- Overview Under the direction of the Security Manager, the Security Analyst III performs two core functions for the enterprise. The first is the day-to-day operations of in-place network and cloud security solutions, including on-premises systems and cloud security controls...Casual workWork at office
$40 per hour
...-edge cybersecurity company is seeking experienced cybersecurity professionals to evaluate AI-generated content and solve complex security problems. In this remote role, candidates will have the opportunity to work on their own schedule and choose projects. Preferred qualifications...Hourly payRemote work- ...for an International US-based company. Key Responsibilities and Requirements: 4 to 5 years of experience specifically in Workday Security, including HR user security, domain security, business process security, integrations security, privacy, audit, controls, and regulatory...Contract workRemote work
- TSR Consulting is looking for a Senior Information Security Analyst in Warren, NJ on a hybrid basis. This contract position focuses on supporting the Governance, Risk, and Compliance (GRC) program. Ideal candidates will possess over 10 years of experience in Information...Contract work
$55.44k - $77.36k
## Securities & Derivatives Intermediate Associate Analyst HybridApplylocations: Getzville New York United Statestime type: Full timeposted on: Posted Yesterdayjob requisition id: 26972398The Sec & Derivat Intmd Assoc Analyst is an entry level position responsible for processing...Full time- ...solutions provider is seeking experienced cybersecurity professionals to join their team. In this role, you will evaluate AI-generated security content and solve technical problems in cybersecurity. Candidates should have 2+ years of hands-on experience in various aspects...Remote jobFull timePart time
- A leading AI cybersecurity firm is seeking experienced cybersecurity professionals to evaluate and improve AI-generated security content. This role focuses on assessing the accuracy of AI systems and solving technical cybersecurity challenges. Candidates should have over...Remote jobHourly payFlexible hours
$40 per hour
A cybersecurity firm in New Jersey is seeking experienced professionals to evaluate AI-generated security content. The role involves solving technical cybersecurity problems, providing feedback to enhance AI systems, and ensuring the reliability of tools in the industry...Remote jobHourly pay- Reflect Health is looking for a Senior Security Analyst to contribute to security operations and compliance initiatives. The role includes incident response, vulnerability management, and working with engineering teams to enhance security posture. The ideal candidate will...Remote work
- Citibank (Switzerland) AG is seeking a Securities and Derivatives Senior Analyst in Getzville, New York. This full-time role requires expertise in managing syndicate processes for debt and equity capital markets, ensuring timely closings and compliance with regulatory standards...Full time
- Code & Supply Co. in Pennsylvania is looking for a Security Analyst III to manage the enterprise's network and cloud security solutions. This position entails leading security architecture planning, monitoring security systems, and maintaining configurations to protect...
- Brink's is looking for a Security Operations Center Specialist in New York. The successful candidate will handle daily security operations, monitor alarms, and communicate effectively with internal customers. This position demands at least 2 years of experience in a security...Day shift
- JPC Partners is looking for a Security Analyst. The Security Analyst will work with the Critical Infrastructure Protection (CIP) Compliance Department that is responsible for assisting in the development, coordination, monitoring, and communication of all applicable standards...
$40 per hour
A leading cybersecurity firm is looking for experienced cybersecurity professionals to evaluate AI-generated content and solve security problems. This position is remote and can be full-time or part-time. Candidates should have at least 2 years of experience in roles such...Remote jobHourly payFull timePart time- A technology firm specializing in AI development is seeking a Securities Analyst to enhance AI capabilities in finance. The remote role accommodates various working styles, whether part-time or full-time. Candidates should have expertise in financial analysis and enjoy...Remote jobHourly payFull timePart time
$40 per hour
A cybersecurity solutions company is seeking experienced professionals to evaluate AI-generated security content and solve technical problems. This role is fully remote, allowing you to work on a flexible schedule while contributing to the enhancement of AI systems in...Remote jobHourly payFlexible hours$60k - $80k
A leading technology company in the US is seeking a Security Analyst to enhance their cybersecurity posture. This role involves monitoring threats, implementing security controls, and collaborating with cross-functional teams. Candidates should have formal education in...Remote job$60 per hour
A leading AI development firm is seeking experienced cybersecurity professionals to evaluate AI-generated security content and solve technical security problems. This fully remote position allows for flexible scheduling and competitive pay up to $60/hour. Candidates should...Remote jobFlexible hours$40 per hour
A tech firm specializing in cybersecurity is seeking experienced professionals to evaluate AI-generated content and address cybersecurity challenges. The ideal candidate will have 2+ years of hands-on experience, some coding knowledge, and strong analytical skills. This...Hourly payRemote work$40 per hour
A cybersecurity-focused company is seeking professionals to evaluate AI-generated security content and design solutions to strengthen AI systems. Candidates should have over 2 years of experience in cybersecurity fields such as penetration testing or incident response,...Remote jobHourly payFlexible hours$40 per hour
A cybersecurity company is seeking experienced professionals to evaluate and improve AI-generated security content. This role involves solving technical cybersecurity problems and providing feedback to enhance AI systems. Candidates should have 2+ years in cybersecurity...Remote jobHourly payFlexible hours$100k - $130k
...your next great opportunity. Ready to be on the front lines of cybersecurity? BlackCloak is looking for a sharp and proactive Security Analyst to join our team. In this role, you’ll be the first responder, monitoring and triaging security alerts from a variety of sources...Temporary workRemote workHome officeFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Analyst / ISSO. Be the first to apply!
- bond analyst New York, NY
- senior security analyst New York, NY
- entry level security analyst New York, NY
- IT security analyst New York, NY
- security operations analyst New York, NY
- security analyst intern New York, NY
- physical security analyst New York, NY
- network security analyst New York, NY
- information security analyst New York, NY
- junior security analyst New York, NY

