Security Analyst / ISSO
Lynk
Full-time Chevy Chase, MD (Hybrid) US-based Senior level Reports to CISO US citizenship or Lawful Permanent Resident status required. This role involves access to Controlled Unclassified Information (CUI); no security clearance required. About Lynk Lynk is building the world’s first global satellite-to-cellular network, enabling direct device-to-device (D2D) connectivity from commercial low Earth orbit (LEO) satellites to standard mobile phones, no special hardware required. We operate in a market alongside other commercial LEO constellations, satellite-direct-to-cellular providers, and large-scale broadband satellite networks, competing for the same spectrum, orbits, and government contracts. Our technology and network infrastructure are of significant interest to US government and defense customers. Protecting the integrity of that infrastructure and the Controlled Unclassified Information that flows through it is mission critical. That’s where you come in. Role Overview Reporting directly to the CISO, you’ll own Lynk’s cybersecurity compliance program across CMMC Level 2 / NIST SP 800-171, DFARS 7012, SOC 2 Type II, and GDPR. You’ll be ISSO for CUI-scoped systems: authoring SSPs, maintaining POA&Ms, running control assessments, and leading C3PAO engagement. Lynk has a functioning security toolset in place including SIEM/log management, EDR, MDM, vulnerability management and IT asset management; your job is to mature and align that stack to CMMC requirements, not start from zero. Responsibilities GRC & Compliance (primary) Own and maintain the System Security Plan (SSP) and Plan of Action & Milestones (POA&Ms) for all CUI-scoped systems; always keep documentation audit-ready. Assess all 110 NIST SP 800-171 practices for implementation and effectiveness; map existing controls (Wazuh, ThreatDown, Tenable, ManageEngine, AD GPOs, SnipeIT) to CMMC requirements, identify gaps, and drive remediation. Maintain the organizational risk register; support ongoing Risk Management Framework (RMF) processes and report risk posture to the CISO. Lead preparation for CMMC Level 2 assessments — build evidence packages, coordinate with the C3PAO, and manage assessor requests and findings. Develop and maintain cybersecurity policies, procedures, and standards aligned to CMMC, DFARS, SOC 2, and GDPR; ensure version control and staff acknowledgment records are maintained. Define, track, and report security metrics and KPIs to the CISO and non-technical stakeholders including legal, contracts, and business development teams. Support contract teams with DFARS clause requirements, cybersecurity representations, and customer security questionnaires. Conduct vendor and third-party risk assessments; maintain supplier risk documentation. Manage the security awareness training program and phishing simulations; maintain completion records per CMMC requirements. Security Operations (secondary) Monitor SIEM for security events and alerts relevant to CUI systems; write and tune detection rules; triage and elevate incidents; produce post-incident reports with compliance impact assessment. Leverage audit log aggregation to satisfy CMMC AU (Audit & Accountability) control evidence requirements. Monitor EDR alerts for CUI-scoped endpoints; investigate detections and coordinate response with IT. Work with IT to ensure vulnerability findings are remediated within CMMC-required timeframes, track and report on remediation status. Leverage MDM and Active Directory to enforce device compliance, GPO-based security baselines, and access control policies across CUI-scoped endpoints. Use asset inventory as the authoritative hardware/software asset register for CMMC system boundary documentation; keep it current and audit ready. Conduct periodic access control audits; enforce least-privilege across AD, SSO, and SaaS tooling handling CUI. Required Skills And Experience 3–6 years in cybersecurity with a strong GRC or compliance focus; prior ISSO experience or equivalent accountability preferred. Deep, working knowledge of NIST SP 800-171 and DFARS 7012. Able to assess, gap-analyze, and evidence all 110 controls independently. Demonstrated experience authoring SSPs and POA&Ms for government-facing or regulated environments. Familiarity with the CMMC Level 2 assessment process and C3PAO engagement. Hands-on SIEM experience: writing detection rules, querying logs, and generating compliance-grade audit evidence. Hands-on experience with EDR and vulnerability scanning tools in a compliance context. Mapping tool outputs to NIST controls and generating assessor evidence. Working knowledge of SOC 2 Type II and GDPR compliance requirements. Some cloud security fundamentals (AWS preferred). IAM, CloudTrail, GuardDuty, access policies. Clear, structured communicator. Equally comfortable writing formal policy documentation and briefing non-technical executives. US citizenship or Lawful Permanent Resident status. Nice To Have CMMC Registered Practitioner (RP) or Professional (CCP) CISSP / CISM / Security+ RMF / ATO experience FedRAMP familiarity Space / satellite industry background Telecom or critical infrastructure security Prior C3PAO assessment experience GRC platform experience (Vanta, Drata, Archer, ServiceNow) Scripting in Python or Bash for evidence collection automation Zero-trust architecture What Lynk Offers Competitive salary and equity in a company building genuinely novel global infrastructure. Remote-first, US-based role. Direct line to the CISO; your work defines Lynk’s compliance posture at a critical growth stage. A functioning security toolset already in place. Your focus is maturing and aligning it, not standing it up from scratch. Learning and certification budget. ITAR Requirements To comply with U.S. Government export control regulations (ITAR), applicants must be one of the following: (i) a U.S. citizen or national, (ii) a lawful permanent resident (green card holder), (iii) a refugee under 8 U.S.C. §1157, or (iv) an asylee under 8 U.S.C. §1158. Individuals who do not meet these criteria must be eligible to obtain the necessary authorizations from the U.S. Department of State. For more information, please refer to the ITAR guidelines. Learn about ITAR here. Lynk is an equal opportunity employer. This position requires US citizenship or Lawful Permanent Resident status due to access to Controlled Unclassified Information. #J-18808-Ljbffr Lynk
- IT Cloud Security Analyst Location: Bethesda, MD (onsite 3 to 5 days/week) Job Id: 448-2026 # of Openings: 1 Futrend Technology Inc. is seeking... ...with the customer’s Information Systems Security Officer (ISSO) and play a critical part in safeguarding NLM’s IT...SuggestedWork experience placement3 days per week
$62k - $141k
...Cyber threats are evolving, and perimeter security and automated protection aren’t enough—it... ...us, let’s go find them. Systems Security Analyst We’re looking for a specialist who can... ...Qualifications 2+ years of experience as an ISSO or Information System Security Analyst (...SuggestedLocal area- ...Instruction 8500.01 mandated cybersecurity requirements. Providing ISSO support for OMC systems across NIPRNET, SIPRNET, JWICS, and SAP... ...requests, and system change requests. Providing host‑based security system (HBSS) client management. Implementing andmaintaininganti...SuggestedFor contractorsWork at office
- Synertex LLC is seeking a Financial Analyst to support critical government and intelligence initiatives in Bethesda, Maryland. The ideal candidate will manage budgeting, forecasting, and billing while providing insightful analyses to senior leadership. Candidates must possess...Suggested
$69.55k - $125.73k
Description FED CIV IT at Leidos currently has an opening for a Mid‑Level Cyber Security Analyst to provide a full range of cyber security services on a long‑term contract in Baltimore, MD. The position is full‑time/permanent and will support a US Government civilian...SuggestedLong term contractPermanent employmentFull timeWork experience placementImmediate start$86.8k - $198k
Job Number: R0242155 Systems Security Analyst The Opportunity As a systems security analyst, you understand the value of hunt-forward operations... ...world can't wait. You Have: 5+ years of experience as an ISSO or Information System Security Analyst (ISSA) 5+ years of experience...Full timeContract workPart timeWork at officeLocal areaRemote workWorldwide$78.9k - $123.3k
...Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring... .... Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security...Permanent employmentFull timePart timeWork at officeLocal areaRemote work$70 - $80 per hour
...Description We are seeking an experience Security Analyst / Vulnerability Management Lead to join our security compliance team. In this role... ...work closely with the Information Systems Security Officer (ISSO) and play a critical part in safeguarding organization’s IT infrastructure...Contract workTemporary workWork experience placement3 days per week- ...Physical Security (PHYSEC) Analyst The Physical Security (PHYSEC) Analyst provides expert-level support for physical security policy development, planning, assessment, risk management, and program administration at a military service headquarters level. The analyst...Work at officeLocal area
$60k - $130k
Physical Security Analyst In this role you will be a part of the U.S. Coast Guard headquarters team that provides policy and security program support for the security and resilience of critical USCG missions, infrastructures, and assets. In this high-visibility, demanding...Hourly payContract workWork experience placementLocal areaWorldwide$60k - $130k
Watermark Risk Management International, LLC is seeking a Personnel Vetting (PV) Specialist to provide essential personnel security program support. The role includes assessing individuals for federal employment eligibility and national security access. The ideal candidate...- Arenatechnologies is seeking an Operations Research Analyst to support systems engineering and testing at our headquarters in Alexandria... ...with opportunities to work with DHS and contribute to critical national security initiatives. #J-18808-Ljbffr Arena Technologies LLCWork at office
$145k - $200k
The Role As a Defensive Security Analyst, you are responsible for the security of Palantir’s people and infrastructure around the globe. Your technical expertise is second only to your integrity and real passion for security and technology in general. Our ideal candidate...Work at officeRelocation package$110k - $160k
Specter Ops, Inc. is hiring a Defensive Security Analyst in Washington, DC. This role requires managing Security Operations at client sites while working with client personnel and systems. Candidates must have strong expertise in security operations and incident response...Flexible hours$60k - $130k
Personnel Vetting (PV) Specialist The role provides personnel security program support for the vetting, investigation, and adjudication of individuals seeking access to federal employment, national security information, or sensitive positions. Responsibilities Process...Hourly payContract workFor contractorsWork experience placementWork at officeLocal area$78.6k - $160.2k
...are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company within global Accenture...Live inWork at officeLocal area$90k - $110k
Breakforth Solutions Inc is looking for a temporary NSI/SCI Analyst in Washington, DC. This role involves providing administrative expertise to the Department of Justice, supporting NSI/SCI operations, and working onsite five days a week. The ideal candidate has over 5...Temporary work$110k - $160k
Defensive Security Analyst - Washington, DC Hybrid, Washington DC SpecterOps is looking for candidates to support Security Operations at a SpecterOps customer site working directly with client personnel and systems. Candidates will independently support the client engineering...Remote workHome officeMonday to FridayFlexible hoursWeekend work- VMD Corp is seeking a Personnel Security Analyst / Adjudicator - Mid in McLean, VA. This role involves managing complex cases, preparing legal documentation, and conducting interviews to support the appeals process. The ideal candidate should have a Bachelor’s degree with...
- The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role in evaluating and reducing EY’s digital exposure through hands‑on penetration testing and adversarial simulation. Working under the guidance of the Exposure...Summer holidayFlexible hours
$116k - $175k
...are seeking a talented individual to join AIS as a Principal Facility Security Officer.As your initial project assignment, you will support the unique needs of our client as a Personnel Security Analyst. Project Summary The Personnel Security Specialist will support the...Contract workWork at office- ...and technical solutions to our Nation's most complex national security challenges. In order to achieve our mission, Core One values people... ...TS/SCI with Polygraph Summary We are seeking a Security Analyst to support cybersecurity operations, compliance, and risk management...
- M1 Technology LLC in McLean is seeking an Information Review and Release Analyst. The role focuses on researching, reviewing, and redacting national security information from various documents related to governmental litigation processes. The ideal candidate will have...
- ...predictive and real-time analytical assessments to identify and manage security, safety, and product-related risks; issue real-time threat... ...Friday (6am to 10pm coverage split as 8 hours each between two analysts). Work Environment and Physical Demands Exposure to stressful...Full timeMonday to FridayDay shiftAfternoon shift
- A security solutions provider in Washington, DC is seeking a Personnel Security Specialist II to support FBI investigations by processing e-QIP packets and conducting analysis. This role requires a Bachelor's Degree and a Current Top Secret security clearance, along with...
- Ernst & Young Oman is seeking an Offensive Security Analyst for the Attack Surface Management team to evaluate and reduce digital exposure through penetration testing. You will identify and assess vulnerabilities across EY’s global attack surface, working to improve security...Flexible hours
- Position Title: Security Analyst Location: US-Virginia-McLean Job ID: 5372 # of Openings: 14 Category: Information Technology Clearance: Top Secret/SCI Clearance Status: Active Type: Regular Full-Time Overview The Security Analyst supports the United States (U....Full time
- ...application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Industrial Security Analyst Full Time Professional Washington, DC, US 4 days ago Requisition ID: 1250 USGI is seeking an Industrial Security Analyst to...Full timeTemporary workWork at office
$30 - $33 per hour
...Insight Global is seeking a Jr. Security Specialist in Arlington, Virginia to support the security of the Joint Worldwide Intelligence Communications Systems at the Pentagon. The role involves assisting DoD personnel with clearance issues, running DISS queries, and providing...Hourly payWorldwide$40 per hour
...for experienced cybersecurity professionals to join our team to help train AI models. In this role, you will evaluate AI-generated security content, solve technical cybersecurity problems, and provide feedback to improve how AI systems reason about real-world threats...Hourly payFull timePart timeRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Analyst / ISSO. Be the first to apply!

