Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Information System Security Compliance Analyst (Multiple Levels)

$78.9k - $123.3k

Noblis

Responsibilities

Position Overview

We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.

The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.

Key Responsibilities

  • Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.

  • Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.

  • Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.

  • Develop, review, update, and maintain authorization package documentation, including:

  • System Security Plans (SSPs)

  • Security Assessment Reports (SARs)

  • Plan of Action and Milestones (POA&Ms)

  • Risk Assessments

  • Continuous Monitoring documentation

  • Security-related policies and procedures

  • Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.

  • Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.

  • Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.

  • Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.

  • Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.

  • Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.

  • Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.

  • Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.

  • Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.

  • Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.

Required Qualifications

  • Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.

  • Experience working with the NIST Risk Management Framework (RMF).

  • Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.

  • Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.

  • Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.

  • Experience tracking and managing POA&M findings through remediation and closure.

  • Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.

  • Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.

  • Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.

  • Strong written and verbal communication skills, including the ability to develop and review formal security documentation.

  • Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.

  • U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.

  • Ability to obtain and maintain an FAA Public Trust.

Education & Experience Substitutions

Substitutions are subject to government customer review and approval.

Mid to senior

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 9+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 15 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 6 years of experience in cybersecurity or network security roles.

Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300

Senior:

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 16+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 20 years of experience in cybersecurity or network security roles

  • An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 13 years of experience in cybersecurity or network security roles

Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525

Desired Qualifications

  • Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.

  • FAA or transportation sector experience preferred.

  • Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.

  • Experience managing authorization packages for multiple systems simultaneously.

  • Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.

  • Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.

  • Experience conducting control assessments, compliance reviews, and security documentation audits.

  • Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.

  • Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.

  • Familiarity with continuous monitoring programs and ongoing authorization requirements.

  • Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.

  • Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.

  • Industry certifications such as:

  • CISSP

  • CAP (Certified Authorization Professional)

  • Security+ CISM

  • GSLC

  • CGRC

  • or equivalent certifications

  • Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.

Overview

Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.

  • Remote/hybrid status is subject to change based on Noblis and/or government requirements

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.

If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .

EEO is the Law ( | E-Verify ( | Right to Work (

Total Rewards

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.

Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.

Posted Salary Range

USD $78,900.00 - USD $180,525.00 /Yr.

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Information System Security Compliance Analyst (Multiple Levels) in Boston, MA vacancy
  • $55 - $60 per hour

     ...Akkodis Akkodis is seeking an IT Security Analyst for a Contract position with...  ...posture as the MMIS system migrates to the AWS cloud datacenter...  ...degree in Computer Science, Information Systems/Technology, Business...  ...Chance Ordinance Seniority level Seniority level Mid-Senior... 
    Information System
    Contract work
    Temporary work
    Work experience placement
    Local area
    Remote work
    Early shift

    Akkodis

    Quincy, MA
    1 day ago
  • $30 per hour

     ...development in fields such as information technology, technical/systems consulting, technical...  ...supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work...  ...remains posted. Career Level - IC0 About Us Only... 
    Information System
    Hourly pay
    Temporary work
    Internship
    Flexible hours

    Oracle

    Boston, MA
    3 days ago
  • $109.5k - $164.3k

     ...world of play and imagination. The Sr Security and Compliance Analyst plays a key role in safeguarding...  ...through efficient processes and data‑informed insight. Primary Responsibilities Develop...  ...processes by collaborating with system owners and team members to automate evidence... 
    Information System

    Hasbro

    Boston, MA
    3 days ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security...  ...secure software and protect data and systems with appropriate security controls. Information...  ...; Perform ongoing activities in compliance with service and contractual... 
    Information System
    Local area
    Remote work

    Rubrik

    Boston, MA
    5 days ago
  •  ...Information Security Analyst Location: Woburn, Massachusetts Duration: 3 Months Primary Skills...  ...user access rights reviews for critical systems on a periodic basis. Review system...  ...and multi-task effectively across multiple projects - Proficient with Microsoft... 
    Information System
    Permanent employment
    Contract work
    Work at office

    Argyle Infotech

    Woburn, MA
    3 days ago
  •  ...the Position This posting is for an Information Security Analyst to assist the Executive Office for...  ...organizational skills and the ability to manage multiple tasks simultaneously. Key...  ...effectively with stakeholders at all levels of the organization. High level... 
    Work at office
    Local area

    My3Tech Inc

    Boston, MA
    16 hours ago
  • $86.9k - $198k

     ...Job Number: R0242177 Cloud Security Analyst The Opportunity Everyone is...  ...that ensure the safety of information systems and protect them against intentional...  ...experience evaluating the compliance of a system against RMF...  ...Office Suite Intermediate-level Cloud Computing... 
    Information System
    Full time
    Contract work
    Part time
    Work at office
    Local area

    Phase2 Technology

    Lexington, MA
    4 days ago
  • $86.9k - $198k

     ...but not everyone knows how to secure it. As a cloud security...  ...requirements that ensure the safety of information systems and protect them against...  ...experience evaluating the compliance of a system against RMF...  ...t Office SuiteIntermediate-level Cloud Computing Certification... 
    Information System
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Lexington, MA
    3 days ago
  •  ...The IT Security team is responsible for overseeing the...  ...the firm's data and systems. The team manages server...  ...security, regulatory compliance and operational security...  ...~5+ years of information systems security experience...  ...approach Engineering level knowledge of the following... 
    Information System

    CERES Group

    Boston, MA
    3 days ago
  •  ...Overview The IT Compliance Analyst will play a critical role in supporting...  ...compliance program across multiple frameworks including SOC 1...  ...and ensuring adherence to information security policies and procedures....  ...policies, procedures, system security plans, and data flow... 
    Information System

    Veson Nautical

    Boston, MA
    5 days ago
  •  ...Role: Security Analyst Duration: 6-12+ Months Contract Need Green Card...  ...Business with IT audit or compliance experience, or Computer Science...  ...individual to join our Information Security team. The team is...  ...overall security of information systems at eFront and their... 
    Information System
    Contract work

    Cygnus Professionals

    Boston, MA
    2 days ago
  •  ...Must have Application and Infrastructure Security within AWS Strong DevOps background...  ...EOHHS is seeking to hire a Senior IT Security Analyst to join our team supporting our Medicaid Management Information System (MMIS) team. The Senior IT Security Analyst... 
    Information System
    For contractors
    Work experience placement
    Work at office
    Immediate start
    Work from home
    Monday to Friday
    Shift work
    Early shift

    3B Staffing LLC

    Quincy, MA
    3 days ago
  • $70k - $110k

     ...Security Analyst At WHOOP, we are on a mission to unlock human performance...  ...mission by protecting the systems, data, and infrastructure...  ...coordinate investigations across multiple teams and communicate...  ...ranges are determined by role, level, and location. Within each range... 
    Full time
    Work at office
    Relocation

    Venturefizz Product Management Community

    Boston, MA
    3 days ago
  • $91.47k - $143.73k

    ## Sr Security AnalystApplylocations: Bostontime type: Full timeposted...  ...CISO, the Senior Security Analyst, Compliance & Risk serves as a key member...  ...Privacy, and business teams.**Level & Scope**This role:* Operates independently across multiple workstreams and compliance... 
    Full time

    Quick Base

    Boston, MA
    2 days ago
  •  ...Healthcare, Financial Services, Security and Defense and Telecom and...  ...a national and international level. At Indra, we believe that...  ...of Internet and distributed systems for establishing their system...  ...guidance from senior IT security analysts. Work with business units,... 
    Worldwide
    Flexible hours

    Catenon Worldwide Executive Search

    Boston, MA
    1 day ago
  • $71.5k - $104k

    POSITION SUMMARY The Applications Security Analyst professional will participate in the day-to...  ...Security Analyst II Department : Information Security Schedule : Full Time ESSENTIAL...  ...majors in Computer Science, Information Systems, Cybersecurity, Healthcare Informatics... 
    Information System
    Full time
    Fixed term contract
    Flexible hours

    Boston Medical Center

    Boston, MA
    3 days ago
  • Boston University Information Services & Technology (IS&T) is seeking applicants with diverse...  ...and inclusive community as a Security Analyst II. In this role you will respond to cyber...  ...Security Incident and Event Management systems, Endpoint Protection Platforms,... 
    For contractors

    Boston University

    Boston, MA
    1 day ago
  •  ...to work on a w2 basis Zscaler Analyst/Administrator Job Overview We are seeking a Secure Access Administrator to support...  ...through. Ability to prioritize multiple requests while maintaining timely...  ...support efficiency. Maintain a high level of responsiveness and ownership... 
    Remote work

    Overture Partners

    Boston, MA
    1 day ago
  •  ...focus on achieving the security outcomes that teams...  ...Lead and mentor junior analysts and serve as the technical...  ...who vary in their level of technical depth and...  ...investigating alerts and across multiple sources (endpoint,...  ...intrusion detection systems, network monitoring... 
    Shift work

    7AI

    Boston, MA
    1 day ago
  • Cygnus Professionals Inc is seeking a Security Analyst based in Boston, Massachusetts. The role entails providing security expertise to ensure compliance with information security standards and enhancing the overall security posture of the organization. This position requires... 
    Contract work

    Cygnus Professionals

    Boston, MA
    2 days ago
  • $71.7k - $86k

    SECURITY ANALYST II, IS&T Information Security Location: BOSTON, MA, United States Position Type: Full-Time/Regular Grade: 49 - Salary Range: $71,70...  ...including Security Incident and Event Management (SIEM) systems, Endpoint Protection Platforms, firewalls, vulnerability... 
    Full time
    For contractors
    Work at office

    Boston University

    Boston, MA
    4 days ago
  • SECURITY ANALYST II, IS&T Information Security Job Location: BOSTON, MA, United States Posting: 4/14/2026 | Position Type: Full-Time/Regular | Salary...  ...Familiarity with one or more security tools such as SIEM systems, vulnerability scanners, endpoint protection software,... 
    Full time
    For contractors

    Boston University

    Boston, MA
    5 days ago
  •  ...Upwind is a next-generation Cloud Security Platform that leverages...  ...We are looking for a Security Analyst to join our MDR team. In this...  ...work under pressure and manage multiple tasks in a fast-paced...  ...B.Sc. in Computer Science / Information Security - an advantage... 

    Upwind Security

    Boston, MA
    3 days ago
  • $140.53k

    IT Analyst-Service Delivery Center-Finance-Quality Eng-FSO-Manager-Multiple Positions - 1707713 Other locations: Primary Location...  ...relationships across multiple levels. Manage and motivate teams...  ...Science, Engineering, Information Systems, Information Technology, Management... 
    Information System
    Full time
    Work experience placement
    Summer holiday
    Work at office
    Monday to Friday
    Flexible hours

    Ernst & Young Advisory Services Sdn Bhd

    Boston, MA
    3 days ago
  •  ...has a new opening for a Lead Security Analyst 141809 This...  ...experience in a leadership role, information security, relationship...  ...Regulatory compliance & policy implementation...  ...Privacy Controls for Information Systems and Organizations as established... 
    Information System
    Local area
    Remote work

    FHR

    East Boston, MA
    3 hours ago
  • Boston University is seeking a Security Analyst II to respond to cyber security events. This role involves analyzing data from multiple security sources, monitoring threats, and collaborating with cross-functional teams to enhance security. Candidates should have at least... 

    Boston University

    Boston, MA
    4 days ago
  • $80k - $135k

    IT Security Analyst (3222) Location: Central Office...  ...Bachelor’s degree in Information Technology,...  ...with K‑12 education compliance and regulatory...  ...school networks, systems, and devices to evaluate...  ...and meet multiple demands from several...  ...Tolerate noise levels from moderate to... 
    Full time
    Work at office
    Local area

    Young World Physical Education

    Natick, MA
    4 days ago
  • Boston University is seeking a Security Analyst II for its Information Services & Technology team. This role involves monitoring, analyzing, and processing security events to protect university assets. You will work with cross-functional teams to mitigate risks and maintain... 

    Boston University

    Boston, MA
    5 days ago
  •  ...while maintaining the complex service level expectations. Our global presence with...  ...skills, with ability to organize and manage multiple priorities. Proficiency in MS Word,...  ...Technical aptitude to work across multiple information systems and databases with ability to... 
    Information System

    Makro Scientific

    Cambridge, MA
    2 days ago
  • $110k - $140k

     ...One team. That's OneStudyTeam. We are seeking a Senior Security Compliance Analyst with expertise in Governance, Risk, and Compliance (GRC)...  ...Minimum Education: Minimum of a Bachelor's degree in Information Security, Computer Science, Risk Management, or related... 
    Full time
    Remote work
    Visa sponsorship
    Work visa

    OneStudyTeam

    Boston, MA
    23 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!