Information System Security Compliance Analyst (Multiple Levels)
$78.9k - $123.3kNoblis
Responsibilities
Position Overview
We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.
The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.
Key Responsibilities
Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.
Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.
Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.
Develop, review, update, and maintain authorization package documentation, including:
System Security Plans (SSPs)
Security Assessment Reports (SARs)
Plan of Action and Milestones (POA&Ms)
Risk Assessments
Continuous Monitoring documentation
Security-related policies and procedures
Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.
Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.
Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.
Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.
Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.
Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.
Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.
Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.
Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.
Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.
Required Qualifications
Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.
Experience working with the NIST Risk Management Framework (RMF).
Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.
Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.
Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.
Experience tracking and managing POA&M findings through remediation and closure.
Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.
Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.
Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.
Strong written and verbal communication skills, including the ability to develop and review formal security documentation.
Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.
U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.
Ability to obtain and maintain an FAA Public Trust.
Education & Experience Substitutions
Substitutions are subject to government customer review and approval.
Mid to senior
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
9+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 15 years of experience in cybersecurity or network security roles
Masters degree with a total of 6 years of experience in cybersecurity or network security roles.
Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300
Senior:
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
16+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 20 years of experience in cybersecurity or network security roles
An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles
Masters degree with a total of 13 years of experience in cybersecurity or network security roles
Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525
Desired Qualifications
Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.
FAA or transportation sector experience preferred.
Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.
Experience managing authorization packages for multiple systems simultaneously.
Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.
Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.
Experience conducting control assessments, compliance reviews, and security documentation audits.
Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.
Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.
Familiarity with continuous monitoring programs and ongoing authorization requirements.
Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.
Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.
Industry certifications such as:
CISSP
CAP (Certified Authorization Professional)
Security+ CISM
GSLC
CGRC
or equivalent certifications
Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.
Overview
Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (
Why work at a Noblis company?
Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.
- Remote/hybrid status is subject to change based on Noblis and/or government requirements
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.
If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .
EEO is the Law ( | E-Verify ( | Right to Work (
Total Rewards
At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.
Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.
Posted Salary Range
USD $78,900.00 - USD $180,525.00 /Yr.
$30 per hour
...development in fields such as information technology, technical/systems consulting, technical... ...supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work... ...remains posted. Career Level - IC0 About Us Only...Information SystemHourly payTemporary workInternshipFlexible hours$76.4k - $138.6k
...is fueled by vast amounts of information. Data is more valuable than ever... ...data and information systems is central to doing business,... ...and everyone in EY Information Security has a critical role to play.... ...As an Offensive Security Analyst on the Attack Surface Management...Information SystemSummer holidayLocal areaFlexible hours- ...groups, etc. to assure security integrity. Understands and applies current Information Technology (IT) security... ...knowledge of security system parameters and tables utilized... ...resolve low to medium level security issues.... ...Occasionally participates on multiple teams. Assumes...SuggestedPermanent employment
- ...Information Security Analyst Start date: ASAP End date 09/21/2021 Location: Des Moines, IA 50319 (Remote... ...The Security Analyst is a senior level resource with specialized knowledge and... ...Directory) O365 security reviews/compliance Other scans as needed Keep...SuggestedLocal areaImmediate startRemote work
- ...Management Position : Senior Information Security Analyst Location: ONSITE... ...our organization's systems and data from cyber... ...security measures, and ensuring compliance with regulations,... ...maintenance of documentation for multiple systems including but not...SuggestedFull timeContract workWork experience placementWork at officeLocal area2 days per week
- Teradata Corporation (SE) is looking for a Compliance Analyst located in Des Moines, Iowa. This role supports security compliance across global cloud offerings, managing certifications and compliance documentation. Ideal candidates have a Bachelor's degree and 1-3 years...
- Job Title and Department Security Operations Center Analyst I - Operations -... ...the organization. Monitor multiple systems, alarms, and software and... ...correlate, or evaluate information using software, social media... ...enabling relationships at all levels of associates and...Work at officeShift workRotating shift
- ...Security Analyst Arete Technologies, Inc. offers a set... ...and understanding of information risk concepts and principles... ...Management System administration Varonis... ...administration - file level encryption product... ...Internal Policies compliance Risk Management...Local areaWorldwide
- The Security Analyst has responsibility for the data systems security procedures and the security of... ...in computer science, information technology, or equivalent... ...deadlines, managing multiple project concurrently.... ...Opportunity Employer. In compliance with the Americans...
$20 - $28 per hour
...Bachelor’s degree OR Associates degree in Information Security, Cybersecurity, IT, or related field (... ...Des Moines Iowa to hire a Security Analyst to support enterprise security and... ...assist with vendor security assessments, compliance efforts, and security program...Internship- ...The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role in evaluating and reducing... ...orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability...Summer holidayFlexible hours
$44.8k
...integrity, reliability, and security of critical technology systems by planning and executing audits across information systems and related... ...or suggestions. Ensures compliance with IS audit standards, guidelines... ...complex issues to higher-level staff. Ability to build...Information SystemMinimum wageFull timeContract workTemporary workWork experience placement- ...Position Summary A Security Operations Center (SOC) Analyst II provides real time security... ...event correlation using information gathered from a variety... ...Provides recommendations for system tuning and enhancements.... ...and vulnerability compliance. Provide guidance and expertise...Immediate start
$105.79k - $141.05k
...connected ecosystem. We enable secure, high‑performance... ...The Role The CMMC Compliance Analyst must have advanced practical... ...the personnel, physical, information, and information systems (IS) security requirements... ...supporting a successful CMMC Level 2 C3PAO assessment...Information SystemFull timeTemporary workFor contractorsRemote work- ...the expertise in all facets of Information Operations, making sure our... ...and deployment of information systems crucial to the intelligence... ...that pose a threat to national security, such as drug smuggling,... ...intelligence assessment to high-level decision makers Planning intelligence...Information SystemPart timeWorldwide
- A leading IT staffing firm in Johnston, Iowa is seeking an IT Security Specialist. This role involves granting and maintaining security for applications, networks, and data based on specific security requests. The ideal candidate should have 3-4 years of IT experience,...
$68.4k
...Business Technical Analyst collaborates... ...translate high-level business requirements... ...changes across multiple interconnected systems to support... ...involves staying informed on market trends... ...impacts. Ensure compliance for required standards... ...as all data security guidelines...Information SystemFor contractorsWork at officeLocal area- A leading IT staffing firm in Johnston, Iowa is seeking an IT Security Administrator responsible for managing user credentials and ensuring adherence to security standards. Ideal candidates will have 3-4 years of IT experience, strong knowledge in SAP user profiles, and...
$85.2k - $159.3k
...Overview Ethics, Compliance, and Risk Management... ..., policy, security issues, as well as... ...activities around systems/technology (i.e.,... ...confidential and personal information inventory, in... ...handle multiple tasks. Good working... ...understanding of high‑level technology trends...Information SystemWork experience placementSummer holidayLocal areaFlexible hours- ...and operations of our systems; optimizes the Wells... ...footprint; provides information security; and enables continuous... ..., procedures, or compliance requirements. Collaborate... ...colleagues, and mid-level managers to resolve technical... ...location weekly. Multiple positions available....Information SystemRemote work
- ...Qualifications Are you an Information System Security Engineer (ISSE) looking for... ...Assurance Technical (IAT) Level II baseline certification... ...Please note, due to EEOC/OFCCP compliance, Serco is unable to accept... .... For roles available in multiple states, the range may vary...Information SystemFull timeContract workPart timeInterim roleLocal areaFlexible hours
- ...County, Iowa, is seeking a Business Analyst to join their team supporting crucial... ...dynamic environment while ensuring security and documentation compliance. The ideal candidate will facilitate... ...the security standards necessary for system development. Stellar Innovations...
$84.63k - $112.84k
...ecosystem. We enable secure, high‑performance connectivity... ..., vulnerability, system limits and constraints... .... Recommend new information security systems and controls... ...activities across multiple departments and... ...the general nature and level of work performed by employees...Information SystemFull timeTemporary workRemote work$73.15k - $99.75k
...looking for a Senior Insurance Compliance Analyst to join our Commercial... ...with the ability to manage multiple priorities in a fast‑paced environment... ...sponsors. Salary Range Information Salary ranges below reflect... ...requirements and/or skill level and will be finalized at the...Hourly payPermanent employmentTemporary workWork experience placementH1bWork at officeFlexible hours$57.76k - $124.17k
...implement scalable, secure, and resilient AWS... ...Banking Strategy Analyst , you will drive... ...which will include multiple initiatives assigned... ...developments to inform strategic direction... ..., Information Systems, Computer Science,... ...location, experience level, and other job-related...Information SystemWork experience placementLocal areaRemote workFlexible hours- A leading consulting firm seeks a Security Analyst to advise on security policies, develop security plans, and conduct comprehensive risk... ...assessments. The ideal candidate will possess strong knowledge of information risk concepts, networking, and various security technologies...
$100k
...experience needed to not only secure a job but to thrive in your... ...Many of our candidates land multiple job offers, often with... ...Engineering, Electrical Engineering, Information Systems, IT Knowledge of Core Java,... ...for data Science/Data Analyst/AI/Machine learning positions...Information SystemH1bRemote work$134.22k
...Maximus is hiring a Security Solutions Architect to serve... ...requirements, researching information security standards, conducting system security and... ...internal and/or external compliance activities Develops and... ...architectural and solution‑level security risks and collaborate...Information SystemContract workWork experience placementRemote work- ...Techies who are competing with existing Jobseekers. For entry level Job seekers to get client interviews and jobs they need to... ...Computer Science, Computer Engineering, Electrical Engineering, Information Systems, IT Highly motivated, self-learner, and technically...Information SystemImmediate startRemote work
- ...capabilities into practical, secure, compliant, and... ...with protected health information (PHI), resident care decisions... ...Information Security, Compliance, Legal, Privacy, Human... ...degree in information systems, computer science,... ...career to the next level Digital Wallet Access:...Information SystemImmediate startHome office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!
- data protection analyst Des Moines, IA
- data analyst - r python sql Des Moines, IA
- data analyst bank Des Moines, IA
- data analyst Des Moines, IA
- data center analyst Des Moines, IA
- senior financial data analyst Des Moines, IA
- provider data analyst Des Moines, IA
- sql data analyst Des Moines, IA
- information systems analyst Des Moines, IA
- data integrity analyst Des Moines, IA


