Security Analyst / ISSO
Lynk
Full-time · Remote · US-based · Senior level · Reports to CISO US citizenship or Lawful Permanent Resident status required. This role involves access to Controlled Unclassified Information (CUI); no security clearance required. About Lynk Lynk is building the world’s first global satellite‑to‑cellular network, enabling direct device‑to‑device (D2D) connectivity from commercial low Earth orbit (LEO) satellites to standard mobile phones, no special hardware required. We operate in a market alongside other commercial LEO constellations, satellite‑direct‑to‑cellular providers, and large‑scale broadband satellite networks, competing for the same spectrum, orbits, and government contracts. Our technology and network infrastructure are of significant interest to US government and defense customers. Protecting the integrity of that infrastructure and the Controlled Unclassified Information that flows through it is mission critical. That’s where you come in. Role Overview Reporting directly to the CISO, you’ll own Lynk’s cybersecurity compliance program across CMMC Level 2 / NIST SP 800‑171, DFARS 7012, SOC 2 Type II, and GDPR. You’ll be ISSO for CUI‑scoped systems: authoring SSPs, maintaining POA&M, running control assessments, and leading C3PAO engagement. Lynk has a functioning security toolset in place including SIEM/log management, EDR, MDM, vulnerability management and IT asset management; your job is to mature and align that stack to CMMC requirements, not start from zero. Responsibilities Own and maintain the System Security Plan (SSP) and Plan of Action & Milestones (POA&M) for all CUI‑scoped systems; always keep documentation audit‑ready. Assess all 110 NIST SP 800‑171 practices for implementation and effectiveness; map existing controls (Wazuh, ThreatDown, Tenable, ManageEngine, AD GPOs, SnipeIT) to CMMC requirements, identify gaps, and drive remediation. Maintain the organizational risk register; support ongoing Risk Management Framework (RMF) processes and report risk posture to the CISO. Lead preparation for CMMC Level 2 assessments — build evidence packages, coordinate with the C3PAO, and manage assessor requests and findings. Develop and maintain cybersecurity policies, procedures, and standards aligned to CMMC, DFARS, SOC 2, and GDPR; ensure version control and staff acknowledgment records are maintained. Define, track, and report security metrics and KPIs to the CISO and non‑technical stakeholders including legal, contracts, and business development teams. Support contract teams with DFARS clause requirements, cybersecurity representations, and customer security questionnaires. Conduct vendor and third‑party risk assessments; maintain supplier risk documentation. Manage the security awareness training program and phishing simulations; maintain completion records per CMMC requirements. Security Operations (secondary) Monitor SIEM for security events and alerts relevant to CUI systems; write and tune detection rules; triage and elevate incidents; produce post‑incident reports with compliance impact assessment. Leverage audit log aggregation to satisfy CMMC AU (Audit & Accountability) control evidence requirements. Monitor EDR alerts for CUI‑scoped endpoints; investigate detections and coordinate response with IT. Work with IT to ensure vulnerability findings are remediated within CMMC‑required timeframes, track and report on remediation status. Leverage MDM and Active Directory to enforce device compliance, GPO‑based security baselines, and access control policies across CUI‑scoped endpoints. Use asset inventory as the authoritative hardware/software asset register for CMMC system boundary documentation; keep it current and audit‑ready. Conduct periodic access control audits; enforce least‑privilege across AD, SSO, and SaaS tooling handling CUI. Required Skills and Experience 3–6 years in cybersecurity with a strong GRC or compliance focus; prior ISSO experience or equivalent accountability preferred. Deep, working knowledge of NIST SP 800‑171 and DFARS 7012. Able to assess, gap‑analyze, and evidence all 110 controls independently. Demonstrated experience authoring SSPs and POA&M for government‑facing or regulated environments. Familiarity with the CMMC Level 2 assessment process and C3PAO engagement. Hands‑on SIEM experience: writing detection rules, querying logs, and generating compliance‑grade audit evidence. Hands‑on experience with EDR and vulnerability scanning tools in a compliance context. Mapping tool outputs to NIST controls and generating assessor evidence. Working knowledge of SOC 2 Type II and GDPR compliance requirements. Some cloud security fundamentals (AWS preferred). IAM, CloudTrail, GuardDuty, access policies. Clear, structured communicator. Equally comfortable writing formal policy documentation and briefing non‑technical executives. US citizenship or Lawful Permanent Resident status. Nice to Have CMMC Registered Practitioner (RP) or Professional (CCP) CISSP / CISM / Security+ RMF / ATO experience FedRAMP familiarity Space / satellite industry background Telecom or critical infrastructure security Prior C3PAO assessment experience GRC platform experience (Vanta, Drata, Archer, ServiceNow) Scripting in Python or Bash for evidence collection automation Zero‑trust architecture What Lynk Offers Competitive salary and equity in a company building genuinely novel global infrastructure. Remote‑first, US‑based role. Direct line to the CISO; your work defines Lynk’s compliance posture at a critical growth stage. A functioning security toolset already in place. Your focus is maturing and aligning it, not standing it up from scratch. Learning and certification budget. Lynk is an equal opportunity employer. This position requires US citizenship or Lawful Permanent Resident status due to access to Controlled Unclassified Information. #J-18808-Ljbffr Lynk
$65 - $75 per hour
...the job poster from Insight Global Title: Senior Information Security Analyst Location: 100% Remote Pay Rate: $70-$75/hr Key Responsibilities... ...ago AWS Security Engineer, Information System Security Officer (ISSO) United States $80,000.00-$128,000.00 2 weeks ago Business...SuggestedContract workRemote work- Overview Under the direction of the Security Manager, the Security Analyst III performs two core functions for the enterprise. The first is the day-to-day operations of in-place network and cloud security solutions, including on-premises systems and cloud security controls...SuggestedCasual workWork at office
- We’re hiring for an OT Security Analyst to work out of our Corporate Office in Houston while working a Hybrid work schedule. Noble is a leading offshore drilling contractor. We own and operate one of the most modern and technically advanced fleets. Noble has been engaged...SuggestedContract workFor contractorsWork at officeWorldwide
- ...worldwide. We are a leading provider of emergency medical and security solutions for corporations and individuals. Our 24/7 Operations... ...organization. Position Overview Global Security Operations Center (GSOC) Analyst will be responsible for handling the day‑to‑day operations of...SuggestedFull timeWorldwideShift work
$60k - $80k
Overview Under the direction of the Security Operations Lead, the Security Analyst plays a key role in supporting and enhancing the organization’s cybersecurity posture. This position is responsible for administering boundary and security services across the IT environment...SuggestedFull timeRemote work- ## Security AnalystApplyremote type: Hybridlocations: Bridgeville, PA: Holmdel, NJ: Englewood, COtime type: Full timeposted on: Posted... ...discover if you see yourself joining our team as our newest Security Analyst.**SUMMARY**We are seeking a dynamic and experienced Security...Work at officeLocal areaFlexible hours
$100k - $140k
...Shachar (ex-Palo Alto Networks, AWS, Demisto) and Dan (ex-Abnormal Security, Twitter) have previously built, launched, and scaled... ...expanding customer base. Job Overview We're looking for a Security Analyst to be at the core of what we do: reviewing real security cases...- Exciting Security / Soc Analyst III, 6 months contract opportunity in Houston, TX. 5 plus years experience in the security domain, Incident Response, threat monitoring, and handling incidents (incident triage and response) Determine detection requirements for data sources...Contract work
- The L3 Security Analyst is responsible for providing advanced-level security analysis and incident response within the SOC team. They will be involved in proactive threat hunting, complex incident investigations, and handling security breaches. Proactive threat hunting...
- ...on threat detection, analysis, and incident response Aligned with the latest CompTIA CySA+ CS0-003 exam objectives Ideal for security analysts and blue team professionals Practical, scenario-driven and SOC-focused training 75% of our learners achieve career transition...
$40 per hour
...-edge cybersecurity company is seeking experienced cybersecurity professionals to evaluate AI-generated content and solve complex security problems. In this remote role, candidates will have the opportunity to work on their own schedule and choose projects. Preferred qualifications...Hourly payRemote work- ...for an International US-based company. Key Responsibilities and Requirements: 4 to 5 years of experience specifically in Workday Security, including HR user security, domain security, business process security, integrations security, privacy, audit, controls, and regulatory...Contract workRemote work
- Responsibilities Security Planning Develop a security plan for the best standards and practices for the company Continuously update the company’s incident response and disaster recovery plans Research the latest information technology security trends to keep up to date...
$70.08k - $105.12k
## Securities & Derivatives Sr Analyst HybridApplylocations: Getzville New York United Statestime type: Full timeposted on: Posted Todayjob requisition id: 26972710The Sec & Derivatives Sr Analyst is an intermediate level position responsible for processing orders and transactions...Full time- A leading healthcare system in New York is seeking a Sr. II Security Analyst focused on managing security vulnerabilities. The role involves conducting vulnerability scans, analyzing threats, and coordinating with various teams. Candidates must have at least 6 years of...
$97.59k - $142.99k
Sr. II Security Analyst - Vulnerabilities IT/Health IT/Informatics New York, NY ID: 1148439_RR00109138 Full-Time/Regular NYU Langone Health is a fully integrated health system that consistently achieves the best patient outcomes through a rigorous focus on quality...Full time- A critical infrastructure compliance firm is seeking a Security Analyst to support the Critical Infrastructure Protection Compliance Department. Ideal candidates will have over 5 years of experience with CIP standards, strong analytical skills, and the ability to work...
$40 per hour
A cybersecurity-focused company is seeking experienced professionals to evaluate AI-generated security content and solve technical issues. Candidates should have over 2 years in cybersecurity roles and fluency in English. This position allows working remotely with flexible...Remote jobHourly payFlexible hours- Northrop Grumman in Georgia is looking for a Principal Industrial Security Analyst. In this role, you will be responsible for developing and managing security programs for classified materials. Key tasks include creating Standard Operating Procedures and conducting security...Flexible hours
- iMethods is seeking an Epic Security Analyst for a full-time remote opportunity, targeting applicants from multiple states including Oklahoma. This role involves resolving complex technical issues, providing technical support, and optimizing the EHR system performance....Remote jobFull time
- Binance, a leading global blockchain ecosystem in the United States, is hiring a Remote Investigations Specialist. The role involves analyzing customer account data and transactions to assess activities, conducting research, and identifying trends of malicious activity....Remote jobWork from home
- Code & Supply Co. in Pennsylvania is looking for a Security Analyst III to manage the enterprise's network and cloud security solutions. This position entails leading security architecture planning, monitoring security systems, and maintaining configurations to protect...
$55.44k - $77.36k
## Securities & Derivatives Intermediate Associate Analyst HybridApplylocations: Getzville New York United Statestime type: Full timeposted on: Posted Yesterdayjob requisition id: 26972398The Sec & Derivat Intmd Assoc Analyst is an entry level position responsible for processing...Full time- ...solutions provider is seeking experienced cybersecurity professionals to join their team. In this role, you will evaluate AI-generated security content and solve technical problems in cybersecurity. Candidates should have 2+ years of hands-on experience in various aspects...Remote jobFull timePart time
- A leading AI cybersecurity firm is seeking experienced cybersecurity professionals to evaluate and improve AI-generated security content. This role focuses on assessing the accuracy of AI systems and solving technical cybersecurity challenges. Candidates should have over...Remote jobHourly payFlexible hours
- Reflect Health is looking for a Senior Security Analyst to contribute to security operations and compliance initiatives. The role includes incident response, vulnerability management, and working with engineering teams to enhance security posture. The ideal candidate will...Remote work
- Citibank (Switzerland) AG is seeking a Securities and Derivatives Senior Analyst in Getzville, New York. This full-time role requires expertise in managing syndicate processes for debt and equity capital markets, ensuring timely closings and compliance with regulatory standards...Full time
$40 per hour
A cybersecurity firm in New Jersey is seeking experienced professionals to evaluate AI-generated security content. The role involves solving technical cybersecurity problems, providing feedback to enhance AI systems, and ensuring the reliability of tools in the industry...Remote jobHourly pay- TSR Consulting is looking for a Senior Information Security Analyst in Warren, NJ on a hybrid basis. This contract position focuses on supporting the Governance, Risk, and Compliance (GRC) program. Ideal candidates will possess over 10 years of experience in Information...Contract work
$50 - $60 per hour
A technology company specializing in AI is seeking a Securities Analyst to join its growing team. This role offers flexibility for remote work and is designed for varied lifestyles—whether part-time or full-time. Ideal candidates should possess experience and advanced...Remote jobHourly payFull timePart time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Analyst / ISSO. Be the first to apply!
- bond analyst New York, NY
- senior security analyst New York, NY
- entry level security analyst New York, NY
- IT security analyst New York, NY
- security operations analyst New York, NY
- security analyst intern New York, NY
- physical security analyst New York, NY
- network security analyst New York, NY
- information security analyst New York, NY
- junior security analyst New York, NY

