Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Information System Security Compliance Analyst (Multiple Levels)

$78.9k - $123.3k

Noblis

Responsibilities

Position Overview

We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.

The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.

Key Responsibilities

  • Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.

  • Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.

  • Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.

  • Develop, review, update, and maintain authorization package documentation, including:

  • System Security Plans (SSPs)

  • Security Assessment Reports (SARs)

  • Plan of Action and Milestones (POA&Ms)

  • Risk Assessments

  • Continuous Monitoring documentation

  • Security-related policies and procedures

  • Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.

  • Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.

  • Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.

  • Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.

  • Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.

  • Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.

  • Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.

  • Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.

  • Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.

  • Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.

Required Qualifications

  • Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.

  • Experience working with the NIST Risk Management Framework (RMF).

  • Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.

  • Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.

  • Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.

  • Experience tracking and managing POA&M findings through remediation and closure.

  • Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.

  • Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.

  • Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.

  • Strong written and verbal communication skills, including the ability to develop and review formal security documentation.

  • Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.

  • U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.

  • Ability to obtain and maintain an FAA Public Trust.

Education & Experience Substitutions

Substitutions are subject to government customer review and approval.

Mid to senior

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 9+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 15 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 6 years of experience in cybersecurity or network security roles.

Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300

Senior:

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 16+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 20 years of experience in cybersecurity or network security roles

  • An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 13 years of experience in cybersecurity or network security roles

Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525

Desired Qualifications

  • Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.

  • FAA or transportation sector experience preferred.

  • Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.

  • Experience managing authorization packages for multiple systems simultaneously.

  • Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.

  • Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.

  • Experience conducting control assessments, compliance reviews, and security documentation audits.

  • Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.

  • Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.

  • Familiarity with continuous monitoring programs and ongoing authorization requirements.

  • Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.

  • Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.

  • Industry certifications such as:

  • CISSP

  • CAP (Certified Authorization Professional)

  • Security+ CISM

  • GSLC

  • CGRC

  • or equivalent certifications

  • Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.

Overview

Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.

  • Remote/hybrid status is subject to change based on Noblis and/or government requirements

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.

If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .

EEO is the Law ( | E-Verify ( | Right to Work (

Total Rewards

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.

Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.

Posted Salary Range

USD $78,900.00 - USD $180,525.00 /Yr.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Information System Security Compliance Analyst (Multiple Levels) in Denver, CO vacancy
  •  ...Industrial Security Analyst Level 3 or Level 4 At Northrop Grumman...  ...on revolutionary systems that impact people's...  ...with colleagues across multiple locations. They will ensure security compliance with government and company...  ...clearance and access information using the appropriate... 
    Information System
    Contract work
    For contractors
    Work at office
    Remote work

    Northrop Grumman

    Aurora, CO
    21 hours ago
  • $104.09k - $173.48k

     ...employees combined with the systems and processes we use...  ...At ULA, Information Security GRC Analyst 3 plays a critical role...  ...cybersecurity, assurance, and compliance activities for...  ...compliance with multiple U.S. government and...  ...for employees at all levels. We offer our employees... 
    Information System
    Hourly pay
    Permanent employment
    Full time
    For contractors
    Work experience placement
    Relocation
    Flexible hours

    United Launch Alliance

    Centennial, CO
    3 days ago
  •  ...digital experiences both secure and seamless for all...  ...access management. Information Security Analyst As an Information...  ...Security Management System. You will develop and...  ...assess and review policy compliance across the organisation...  ..., and application level and how to apply with... 
    Information System
    Local area
    Worldwide
    Flexible hours

    Ping Identity

    Denver, CO
    2 days ago
  • $65k - $75k

     ...motivated individual to fill the position of a full-time Information Security Risk and Compliance Analyst at our Denver, CO location. The salary range...  ...within risk, vendor, and control tracking systems. Assist with audit and regulatory readiness by organizing... 
    Information System
    Full time

    Sunflower Bank, N.A.

    Denver, CO
    17 days ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security...  ...secure software and protect data and systems with appropriate security controls. Information...  ...; Perform ongoing activities in compliance with service and contractual... 
    Information System
    Local area
    Remote work

    Rubrik

    Denver, CO
    4 days ago
  • $75.8k - $113.8k

     ...on revolutionary systems that impact people...  ...contribute to a secure future for generations...  ...Security Analyst – Level 2 located in Aurora...  ...colleagues across multiple locations. They will...  ...ensure security compliance with government...  ...clearance and access information using the... 
    Information System
    Contract work
    For contractors
    Work at office
    Remote work
    Relocation
    Shift work

    Northrop Grumman

    Aurora, CO
    1 day ago
  •  ...Industrial Security Analyst - Level 2 RELOCATION ASSISTANCE: No...  ...work on revolutionary systems that impact people's...  ...with colleagues across multiple locations. They will ensure security compliance with government and company...  ...clearance and access information using the appropriate... 
    Information System
    Contract work
    For contractors
    Work experience placement
    Internship
    Work at office
    Remote work
    Relocation
    Shift work

    Navstar

    Aurora, CO
    1 day ago
  • $73.7k - $104.63k

     ...Responsible for providing cyber security guidance, identification,...  ...up-to-date experience with multiple operating systems and desk side integration....  ...Advanced or Expert level of experience with focus on...  ...or remove age-identifying information including but not limited to... 
    Information System
    Temporary work
    For contractors

    Xcel Energy

    Denver, CO
    2 days ago
  •  ...Network Security Analyst LOCATION Aurora, CO 80014 CLEARANCE TS/SCI Full...  ...measures to safeguard sensitive information. Collaborating with cross-...  ...Analyst, etc. DEGREE (Level Desired) Bachelor's Degree ALTERNATE...  ...and update security systems Generate and analyze security... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    Aurora, CO
    4 days ago
  • $73.7k - $104.63k

     ...Physical Security Operations Analyst Are you looking for an exciting...  ...Services, Security Systems, and Regulatory....  ...or critical severity level incidents. Facilitate...  ...escalation. Regulatory Compliance and Governance:...  ...Intelligence) information to aid in the resolution... 
    Information System
    Temporary work
    For contractors
    Night shift
    Weekend work

    Xcel Energy

    Denver, CO
    3 days ago
  •  ...In 1986, Robert L. Nelson founded the information systems consulting firm of R.L. Nelson and...  ...yourself joining our team as our newest Security Analyst.SUMMARYWe are seeking a dynamic and...  ...RapidFire Tools: Network Detective, Compliance Manager GRC, VulScan.Strong problem-solving... 
    Information System
    Work at office
    Local area
    Flexible hours

    Vertilocity

    Englewood, CO
    3 days ago
  •  ...Security Operations Analyst (AI Training) About the Role We're partnering...  ...the next generation of AI systems that reason through real-world...  ...Classify severity levels, determine root causes, and...  ...Background working across multiple SIEM or EDR platforms Certifications... 
    Hourly pay
    Ongoing contract
    Contract work
    Freelance
    Remote work
    Flexible hours

    Alignerr

    Denver, CO
    3 days ago
  •  ...sits within theInformation Security Governance, Risk and Compliance (GRC) team, which reports...  ...framework that governs information security across Chatham....  ...Information Security GRC Analyst with a Risk and Policy focusis...  ...assessments forChatham systems,vendorsand business... 
    Contract work
    Immediate start

    Chatham Financial

    Denver, CO
    3 days ago
  • $105k - $130k

     ...CampusGuard, a Nelnet company, provides information security and privacy consulting and compliance services primarily for campus-...  ..., network infrastructure, IT system configurations and physical security as it all relates to multiple compliance requirements. Performing... 
    Information System
    Temporary work
    Fixed term contract
    Local area
    Remote work
    Work from home
    Home office

    Nelnet

    Littleton, CO
    5 days ago
  •  ...-based IT consulting firm, is currently seeking a Security Operations Center (SOC) Information Security Analyst to join our team. This position will monitor, analyze...  ...organization's ticketing and incident management systems. The Analyst will perform cyber incident triage,... 

    Link Technologies

    Denver, CO
    3 days ago
  •  ...Description Experienced Cyber Security Specialist sought for Canadian...  ...threats. · Develop and enforce information security policies and...  ...assessments, and ISO 27001/27017 compliance. · Guide security best practices during system/application design and development... 
    Live in

    Core Talent

    Centennial, CO
    16 days ago
  •  ...Job Title: Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid – onsite and remote Overview System One is seeking a GRC Analyst for an opportunity...  ...Compliance function within the Global Information Security Office and supports the implementation... 
    Information System
    Work at office
    Local area
    Remote work

    System One

    Denver, CO
    1 day ago
  •  ...Security Analyst The Security Analyst is responsible for managing third...  ...vulnerability data from multiple internal and external sources...  ...large data sets into existing systems (e.g., SIEM, data pipelines)...  ...~ Bachelor’s degree in Information Technology or a related field... 

    Argyle Infotech

    Littleton, CO
    2 days ago
  • $85k - $115k

     ...Angi Compliance Team Member For over 30 years, Angi has powered...  ...ensure our products, practices, systems and infrastructure remain...  ...are: ~ Bachelor's degree in Information Systems, Engineering or...  ...compliance, IT, information security or other related field, assessing... 
    Information System
    Work experience placement
    Worldwide
    Flexible hours

    Angi

    Denver, CO
    3 days ago
  •  ...Reports to the Director of Security Risk and Compliance or Delegate to perform activities for the oversight of the risk and compliance program....  ...facilitate confidentiality, integrity, and availability of systems to protect data from unauthorized users. May require a bachelor... 

    Advance American Tech, Inc.

    Denver, CO
    3 days ago
  •  ...driven Senior Cyber Security Analyst to join our team...  ...analyzing activity across systems to identify and...  ...incident correlation using information gathered from a...  ...Possession of an active IAT Level II certification such...  ...while managing multiple tasks and coordinating... 
    Information System
    Work at office
    Shift work

    MANTECH

    Denver, CO
    -124
  •  ...Senior Transmission Rate Analyst Job Description This technical...  ...data necessary to develop multiple transmission revenue...  ...filled at one of four job grade levels: Transmission Rate Analyst I...  ...OASIS (Open Access Same-Time Information System) management and postings.... 
    Information System
    Temporary work
    Remote work
    Flexible hours

    Tri-State Generation & Transmission

    Denver, CO
    4 days ago
  • $69.6k - $82.28k

     ...Position: Trade Compliance Specialist II Job Description: Arrow...  ...telecommunications, information systems, transportation, medical, industrial...  ...to provide the highest level of service and customer satisfaction...  ...BI). Ability to manage multiple high‑risk activities with... 
    Information System
    Hourly pay
    Full time
    Temporary work
    Work experience placement
    Work at office
    Local area
    Worldwide
    2 days per week

    Arrow Electronics, Inc.

    Greenwood Village, CO
    -124
  • $44.8k

     ...integrity, reliability, and security of critical technology systems by planning and executing audits across information systems and related...  ...or suggestions. Ensures compliance with IS audit standards, guidelines...  ...complex issues to higher-level staff. Ability to build... 
    Information System
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement

    Maximus

    Aurora, CO
    3 days ago
  •  ...Trade Compliance Specialist - International Logistics Arrow Electronics...  ...telecommunications, information systems, transportation, medical,...  ...Determine required service levels and engage appropriate logistics...  ...BI). Ability to manage multiple high-risk activities with... 
    Information System
    Hourly pay
    Permanent employment
    Full time
    Temporary work
    Work experience placement
    Work at office
    Local area
    Worldwide
    2 days per week

    Arrow Electronics

    Denver, CO
    1 day ago
  • $85k - $95k

     ...in Denver, Leprino is seeking an IT Security Analyst to help protect and strengthen the technology...  ...practical solutions that keep our systems resilient as we grow. At Leprino,...  ...A bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a... 
    Work at office
    Local area
    Remote work

    Leprino Foods

    Denver, CO
    3 days ago
  •  ...Job Title: Security Analyst I Location: Englewood, CO Job Overview: Security analysts are responsible for providing security solutions for their companies. Their main duties include doing research, collecting data, developing secure strategies... 
    Work at office

    Scout Exchange

    Centennial, CO
    9 hours ago
  •  ...other scanning tools. Web application scanning and web application firewalls. Containers. CIS benchmarks, STIGs, or other security hardening standards. Additional Desirable Skills or Experience SAML, Kerberos, OAuth, OIDC, LDAP. Powershell and... 

    The Dignify Solutions, LLC

    Denver, CO
    2 days ago
  •  ...Job Title: Security Analyst II Location: Englewood, CO - Hybrid (3 Days office & 2 days WFH) Job Overview: Security...  ...security principles while following strict privacy policies. Information security analysts have advanced skills when it comes to... 
    Work at office
    Work from home

    Scout Exchange

    Centennial, CO
    9 hours ago
  •  ...AI / Emerging Tech Security Analyst (AI Training) About the Role What if your security...  ...how the world's most advanced AI systems defend themselves against attack, misuse...  ...Are Background in cybersecurity, information security, or a closely related technical... 
    Hourly pay
    Ongoing contract
    Contract work
    Freelance
    Remote work
    Flexible hours

    Alignerr

    Denver, CO
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!