Cybersecurity Compliance Analyst
BigBear Inc
Overview BigBear.ai is seeking a Cybersecurity Compliance Analyst to Enter manage the overall compliance posture of systems implementing an ATO Automation Platform, interpret automated compliance findings, coordinate with security assessors and Authorizing Officials, and ensure all compliance artifacts meet federal requirements. This role translates technical security implementations into compliance documentation and manages the Authority to Operate (ATO) process. This position will be based out of our Columbia, MD office but will support multiple customers in the Baltimore/Washington corridor and beyond. What you will do Manage end-to-end ATO processes leveraging the ATO Automation Platform’s automated documentation generation capabilities to reduce timelines from months to weeks Review and validate AI-generated System Security Plans (SSPs), Security Assessment Plans (SAPs), and Plan of Action & Milestones (POA&Ms) Conduct gap analyses comparing current system implementations against FedRAMP, CMMC, and NIST 800-53 requirements using ATO Automation Platform’s assessment features Coordinate with Third-Party Assessment Organizations (3PAOs) during security assessments and provide evidence collected through an ATO Automation Platform’s automated mechanisms Customize ATO Automation Platform compliance templates to incorporate customer-specific security overlays and organizational requirements Monitor compliance status dashboards and triage findings identified through continuous automated scanning Maintain compliance documentation currency by leveraging ATO Automation Platform’s code-driven documentation approach that automatically updates artifacts as systems change Prepare monthly continuous monitoring deliverables for Authorizing Officials and security stakeholders Customize the ATO Automation Platform’s FedRAMP Moderate baseline template to include Intelligence Community Directive 503 overlay controls Review AI-generated control implementation statements for AC-2 (Account Management) and validate against actual IAM configurations Coordinate initial readiness assessment with 3PAO, providing evidence packages auto-generated by the ATO Automation Platform Configure the ATO Automation Platform to map customer’s AWS security group configurations to SC-7 (Boundary Protection) control requirements Generate monthly POA&M updates using the ATO Automation Platform’s automated vulnerability tracking and remediation status features What you need to have Bachelor's Degree with a Technical concentration with at least 10 years of professional experience TS/SCI with an active Poly clearance Deep expertise in federal compliance frameworks: FedRAMP (Low/Moderate/High), NIST 800-53 Rev 5, CMMC 2.0 Experience managing ATO processes and working with Authorizing Officials and 3PAOs Strong understanding of Risk Management Framework (RMF) and security assessment methodologies Proficiency in compliance documentation standards including SSPs, SAPs, SAPs, POA&M Knowledge of federal information security regulations (FISMA, DFARS clauses) Experience with continuous monitoring requirements and reporting Understanding of cloud security models and shared responsibility frameworks Ability to interpret technical security configurations and translate them into compliance language What we'd like you to have Prior experience with AI-driven or automated compliance platforms Familiarity with OSCAL data formats and machine-readable compliance artifacts Experience with DoD Security Requirements Guide (SRG) or Intelligence Community compliance requirements Knowledge of GovRAMP or state-level compliance frameworks Certifications: Certified Information Systems Security Professional (CISSP), Certified Authorization Professional (CAP), FedRAMP training certifications Understanding of supply chain risk management and SBOM requirements Experience working in classified or air-gapped environments Background in federal procurement and contract compliance About BigBear.ai BigBear.ai is a leading provider of AI-powered decision intelligence solutions for national security, supply chain management, and digital identity. Customers and partners rely on Bigbear.ai’s predictive analytics capabilities in highly complex, distributed, mission-based operating environments. Headquartered in McLean, Virginia, BigBear.ai is a public company traded on the NYSE under the symbol BBAI. For more information, visit and follow BigBear.ai on LinkedIn: @BigBear.ai and X: @BigBearai. BigBear.ai is an Equal opportunity employer all protected groups, including protected veterans and individuals with disabilities. #J-18808-Ljbffr
- ...must be one of the following fields: Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, or Software... ..., Bash, Python or Perl This Cybersecurity Vulnerability Analyst supports a Vulnerability Disclosure Program (VDP) within the federal...SuggestedFull timeMonday to Friday
$90k - $120k
...current and near-term efforts to provide cybersecurity, data and network analysis expertise to... ...in the following areas: Network Analysts (Cyber, Forensic, Signals, Exploitation... ...experience. Positions may require DoD 8570 compliance: IAT Level I or II certification. (Some...SuggestedLocal areaRemote work$60k - $62k
...Cecil College is looking for an Information Security Analyst to play a vital role in its cybersecurity operations. The selected candidate will monitor IT... ...include identifying security events, assisting with compliance activities, and contributing to user education initiatives...Suggested$105.79k - $141.05k
...connectivity, join us today. The Role The Senior Information Security Auditor is an experienced member of the Information Security Compliance and Audit team with responsibilities for coordinating and executing a variety of compliance audit controls to ensure compliance...SuggestedFull timeTemporary workRemote work$100k - $200k
...bring together some of the most curious minds in networking and cybersecurity. ANS was founded to disrupt the status quo. For over 20 years,... ...today is safe and tomorrow is smarter. As an Intrusion Analyst on our team, you will: be trusted to analyze target digital network...SuggestedTemporary workLocal areaFlexible hours- Job Title: Cybersecurity Analyst (contingent) Job Summary: Seeking an experienced Cybersecurity Analyst/Information Assurance Manager (IAM) Level III to provide cybersecurity expertise and ensure compliance with military Risk Management Framework (RMF) requirements. The...
- Altus Engineering seeks an Information Systems Security Analyst at Aberdeen Proving Ground, MD. This role involves providing cybersecurity and DevSecOps support to the JTCG/ME Program Office while ensuring compliance with necessary security requirements. The successful...Work at office
- ...Assessments. TS/SCI required. Requirements Subject matter expert on Cybersecurity/Information Assurance activities based upon a comprehensive... ..., for FISMA (Federal Information Security Management Act) compliance. Manage and maintain on-line repository of current CPE IEW&S...Work experience placementInterim roleWork at office
$20 per hour
A healthcare technology company is seeking a HIPAA Compliance Officer to enhance AI models focused on healthcare. The ideal candidate must be fluent in English and possess a medical or healthcare-related degree. Responsibilities include analyzing AI outputs for accuracy...Hourly payFor contractorsRemote workFlexible hours- ...Responsibilities Ensures compliance with state and federal guidelines Provides legal and regulatory research Evaluates processes, procedures, systems, and correspondence Responds to compliance related questions Documents findings and presents recommendations Requirements...
$88.2k - $133k
Textron is seeking a Sr Import/Export Compliance Analyst to manage export compliance for Textron Unmanned Air Systems in Hunt Valley, MD. Candidates should have at least 8 years of ITAR compliance experience and a Bachelor's degree, preferably in international business...Full timeFlexible hours$81.75k - $146.88k
The State of Maryland seeks an Audit Compliance Analyst to evaluate and monitor State agencies' audit findings. This role involves communication with various stakeholders, conducting audits, and preparing reports. The position offers a full-time opportunity in Annapolis...Full time$88.2k - $133k
Sr Import/Export Compliance Analyst Textron Systems is part of Textron, a $14 billion, multi‑industry company employing 35,000 talented makers, thinkers, creators and doers worldwide. We make things that fly, hover, zoom and launch. Things that move people. Protect soldiers...Permanent employmentFull timeLocal areaWorldwideFlexible hours- Element Fleet Management is seeking a Senior Controls Analyst in Owings Mills, MD. This role focuses on enhancing the organization's... ...controls. The analyst will work with various stakeholders to ensure compliance and drive continuous improvement in business processes. The...
$61.9k - $141k
...Booz Allen Hamilton in Maryland is looking for a Mid Cyber Security Code Analyst. In this role, you will be responsible for maintaining applications and troubleshooting issues. You will need experience in programming languages like Java, C/C++, or Python, and hold a Bachelor...- The SCA and DBA Compliance Analyst will support the company’s compliance with Service Contract Act (SCA) and Davis-Bacon Act (DBA) requirements to ensure all applicable wage determinations, labor laws and regulatory orders are met. This collaborative partner role works...Hourly payContract workWork experience placementFor subcontractorWork at officeLocal areaRemote work
$96k - $120k
Amentum is seeking an SCA and DBA Compliance Analyst in Annapolis, Maryland. This remote position requires compliance expertise with the Service Contract Act and Davis-Bacon Act, ensuring adherence to regulatory standards. Responsibilities include managing compliance risks...Remote jobContract work- ...A cybersecurity company is seeking a Cybersecurity Vulnerability Analyst to support a Vulnerability Disclosure Program for the federal government. The role requires a Bachelor’s degree and extensive experience in IT or cybersecurity, along with an active Security+ certification...
- We are looking for a System Vulnerability Analyst to identify vulnerabilities of and attacks to the design and operation of a system (H/W, S/W, personnel, procedures, logistics, and physical security) by relating vulnerabilities and attacks to effects on operations and...
$96.57k - $130.65k
...maintain accurate inventory and documentation ~ Implement data center best practices for cabling, labeling, access control, compliance, and physical security standards ~ Support site inspections, readiness assessments, and quality assurance reviews to...Temporary workImmediate startRemote workWorldwideFlexible hours- ...Commence cuts straight to better care. Requirements Learn, document, and implement Federal and CMS information security controls in compliance with CMS IS2P2, FISMA, FedRAMP, HIPAA, and all applicable CMS security policies and procedures. Disseminate and implement IT...Contract workFor contractorsWork experience placement
- Amentum is seeking an energetic Government Finance & Compliance analyst to coordinate and support government audits, prepare Incurred Cost Proposals, and apply FAR/CAS to data for compliance. The role reports to the GF&C Manager and collaborates across the organization...Remote job
$100k - $250k
Acclaim Technical Services, a leading organization in cyber operations, is seeking a Digital Network Exploitation Analyst. This role is critical in supporting U.S. Federal agencies, especially within the Defense & Homeland Security Division. As a pivotal member of the team...- PD Inc International is seeking a Senior Network Vulnerability Analyst to support a U.S. government (DoD) environment, based in Fort... ...requires Active Secret Clearance, full-time commitment, and advanced cybersecurity capabilities. Ideal candidates have 5+ years in incident...Full timeWork at office
- ...and licensing in the NMLS. Responsibilities Track and provide notice of all upcoming licensing deadlines, including applicable compliance requirements. Coordinate the gathering of documentation requested by state and federal examiners from clients. Facilitate application...
- ...Landing Zone Architecture (LZA), and the adoption of an OTEL‑first monitoring and logging platform. By enabling evidence automation, compliance‑as‑code, and integrated security telemetry, the ISSO will strengthen application readiness, accelerate ATO timelines, and ensure...Full timeRemote work
$92k - $138k
...new product launch in assigned market(s). Monitor changes in regulations that impact current or future requirements and overall compliance. Communicate requirements of regulations to internal or external customers. Recommend regulatory pathways, strategies, and solutions...Minimum wageWork experience placementLocal areaWorldwide- ...Executing environmental permitting strategy, developing regulatory strategy, and directing environmental field surveys and construction compliance for a variety of projects. Conducting environmental field surveys in a lead capacity as needed, including wetland, forest stand,...Local areaWorldwideNight shift
- ...Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supporting security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF). Position requires an active TS/SCI with...
- ...maintenance activities on multiple system domains of various security classification levels and diverse user bases concurrently. DoD 8570 compliance with Information Assurance Management (IAM) Level 1 or higher is required Task Desired Skills Experience with Nessus (Tenable),...Full timeContract work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Compliance Analyst. Be the first to apply!
- cyber security specialist Annapolis, MD
- cyber security consultant Annapolis, MD
- senior compliance analyst Annapolis, MD
- regulatory compliance specialist Annapolis, MD
- regulatory affairs consultant Annapolis, MD
- regulatory affairs specialist Annapolis, MD
- compliance coordinator Annapolis, MD
- cybersecurity policy and compliance analyst Annapolis, MD
- compliance specialist Annapolis, MD
- senior regulatory affairs specialist Annapolis, MD


