Information System Security Compliance Analyst (Multiple Levels)
$78.9k - $123.3kNoblis
Responsibilities
Position Overview
We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.
The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.
Key Responsibilities
Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.
Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.
Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.
Develop, review, update, and maintain authorization package documentation, including:
System Security Plans (SSPs)
Security Assessment Reports (SARs)
Plan of Action and Milestones (POA&Ms)
Risk Assessments
Continuous Monitoring documentation
Security-related policies and procedures
Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.
Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.
Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.
Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.
Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.
Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.
Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.
Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.
Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.
Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.
Required Qualifications
Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.
Experience working with the NIST Risk Management Framework (RMF).
Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.
Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.
Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.
Experience tracking and managing POA&M findings through remediation and closure.
Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.
Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.
Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.
Strong written and verbal communication skills, including the ability to develop and review formal security documentation.
Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.
U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.
Ability to obtain and maintain an FAA Public Trust.
Education & Experience Substitutions
Substitutions are subject to government customer review and approval.
Mid to senior
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
9+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 15 years of experience in cybersecurity or network security roles
Masters degree with a total of 6 years of experience in cybersecurity or network security roles.
Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300
Senior:
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
16+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 20 years of experience in cybersecurity or network security roles
An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles
Masters degree with a total of 13 years of experience in cybersecurity or network security roles
Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525
Desired Qualifications
Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.
FAA or transportation sector experience preferred.
Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.
Experience managing authorization packages for multiple systems simultaneously.
Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.
Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.
Experience conducting control assessments, compliance reviews, and security documentation audits.
Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.
Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.
Familiarity with continuous monitoring programs and ongoing authorization requirements.
Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.
Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.
Industry certifications such as:
CISSP
CAP (Certified Authorization Professional)
Security+ CISM
GSLC
CGRC
or equivalent certifications
Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.
Overview
Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (
Why work at a Noblis company?
Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.
- Remote/hybrid status is subject to change based on Noblis and/or government requirements
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.
If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .
EEO is the Law ( | E-Verify ( | Right to Work (
Total Rewards
At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.
Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.
Posted Salary Range
USD $78,900.00 - USD $180,525.00 /Yr.
- ...IT Security Analyst Monitor and advise on information security issues related to the systems and workflow at an agency to ensure the internal IT security controls for an agency... ...non-technical audience Collaborate on multiple projects at a given time and experience...Information SystemShift work
$30 per hour
...development in fields such as information technology, technical/systems consulting, technical... ...supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work... ...remains posted. Career Level - IC0 About Us Only...Information SystemHourly payTemporary workInternshipFlexible hours$124.2k - $186.2k
...About the team: The Information Security organization advances the overall state of security... ...secure software and protect data and systems with appropriate security controls. Information... ...; Perform ongoing activities in compliance with service and contractual...Information SystemLocal areaRemote work- ...Services - MDOT - IT Security Analyst 2 Location :... ...analyzing and applying information security principles... ...experience reviewing IT systems/applications plus... ...the Governance, Risk, Compliance tool. This requires close... ...to collaborate on multiple projects/efforts at a...SuggestedWork at officeLocal areaRelocationShift work
- ...specified area. Monitor and advise on information security issues related to the systems and workflow at an agency to... ...Cyber Security, Risk and Compliance Division Director with the enterprise... ...required to maintain the appropriate level of data protection and suggest...Suggested
- ...Compliance Specialist Top Skills & Years of Experience Required... ...below: Knowledge of Cyber Security NIST 800-53 Follow the... ...to clearly explain technical information to both technical and non-... ...These multi-million-dollar systems require a Compliance Specialist...
- ...IT Security Analyst 3 Monitor and advise on information security issues related to the systems and workflow at an agency to ensure the internal IT security controls for an agency are appropriate and operating as intended. Member of the client and will focus on engineering...
- ...specified area. The Senior Security Analyst position works as a member... ...completes mid to high-level cyber investigations involving... ...or potential breaches or non-compliances and ensures that all identified... ...collected metrics across multiple agencies: conducts trend analysis...
- ...Job title: Cyber Security Analyst - Vulnerability Management Team Location... ...vulnerabilities found by IT level analysts to IT security... ...auditors, providing detailed information on remediation efforts.... ...those collected metrics across multiple agencies. Escalates as...Work at officeLocal areaRemote work2 days per week
- ...IT Security Analyst 3 The State of Michigan is looking for an IT Security Analyst 3. Top skills and years of experience include: ~6+ years experience with IT security and auditing. ~ Expert knowledge around NIST Controls and ability to perform risk assessments...Local areaRemote workRelocation
- ...Job Title: IT Security Analyst 3 Job Location: Dimondale, MI (Hybrid) Job Type: Contract Job... ...external auditors, providing detailed information on remediation efforts. Conducts data... ...based on those collected metrics across multiple agencies. Escalates as appropriate. Requirements...Contract work
- ...Michigan IT Security Analyst #1057680 Job Description: Who we are looking... ..., eDiscovery) to enforce compliance policies and protect sensitive... ...best practices and system hardening across the infrastructure... ...A bachelor's degree in information technology, cybersecurity,...Permanent employmentImmediate start
$108.31k - $160k
...Fully remote Information Technology Overview... ...Cyber Threat Analyst to support the US... ...development of new security content as the result... ...iteratively search through systems and networks to... ...of your highest level of education... ...vary depending on multiple individualized factors...Information SystemFull timeCurrently hiringRemote workFlexible hours$90k - $110k
...Fully remote Cyber Security Services Overview... ...currently hiring for an Information Systems Security Officer (... ...FISMA and OMB A-130 compliance, responding to audits... ...Establish system impact levels following FIPS 199... ...may vary depending on multiple individualized factors...Information SystemFull timeContract workCurrently hiringRemote workFlexible hours- ...Enter pricing and pertinent information into Quote Central system. Utilize CATIA to measure... ...must meet Export Control Compliance requirements; therefore a... ...of Defense Secret Security Clearance: Though not required... ...chemicals. The noise level in the work environment is...Information SystemPermanent employmentTemporary workLocal areaNight shiftWeekend work
- ...recruiters to obtain personal information from job seekers. Please be... ...sensitive information such as Social Security numbers or bank details... ...Erbil, Iraq Clearance Level Department of State - Secret... ...veteran status. For OFCCP compliance, the taxable entity...Local areaWorldwideOverseasLong distance
$134.22k
...Maximus is hiring a Security Solutions Architect to serve... ...requirements, researching information security standards, conducting system security and... ...internal and/or external compliance activities Develops and... ...architectural and solution-level security risks and collaborate...Information SystemContract workWork experience placementRemote work- ...and CATS applicants tracking system, we can provide quality resources... ...in the areas related to Information Technology, Engineering, professional... ...including rights, security, and systems groups. Performs... ...maintenance for complete systems/multiple locations Candidates with...Information SystemRelocationShift work
- ...expert guidance on financial, compliance, and information/data security risks and controls.... ...securing approval from C-level executive leadership. Regularly... ...to Information Systems data security and control... ...with the ability to manage multiple priorities in a dynamic,...Information SystemWork at office
- ...The Investment Analyst is an integral part... ...investment reporting system to ensure accurate... ...practices and compliance with regulatory requirements... ...required data and information and resolve... ...Ability to manage multiple projects simultaneously... ...to the highest level of confidentiality...
$68.4k
...include business/systems analysis, requirements... ...resolution. The analyst communicates with... ...to moderate levels of complexity... ...Computer Science, Information Systems, Healthcare... ...do this job. Compliance Requirement :... ...well as all data security guidelines established...Information SystemFor contractorsWork experience placementWork at officeLocal areaRemote work$71.2k - $166.1k
...Job Description The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical... ...mission timelines · Maintain compliance with all corporate and federal cybersecurity... ...as the job remains posted. Career Level - IC3 About Us Only Oracle...Information SystemContract workTemporary workWork experience placementRelocationFlexible hours$70 - $75 per hour
...experience is required in Geographical Information System (GIS) with experience using Esri GIS software... ...coordinating GIS projects involving multiple agencies, projects involving enterprise... ...agency GIS stakeholders. Seniority Level Mid-Senior level Employment Type Contract...Information SystemContract work- ...Retirement Services to stay informed on changes and updates... .... Responsible for compliance with state employment... ...-related software and systems. Provide annual... ...to operate as a senior level HR professional across... ...Prioritize, lead, and manage multiple projects with...Information SystemWork at officeRemote work
$76k
...advisor to fill an entry-level position that offers... ...Look for, identify, and secure new clients to serve as... ...financial plans. Stay informed about the latest trends... ...Microsoft Office, CRM systems, financial planning software... ...is unique, we offer multiple ways to affiliate and options...Start working todayWork at office- ...protective equipment as required. Computer skills: knows multiple functions in the Laboratory Information System (LIS) and Hospital Information System (HIS), and... ...on a regular to frequent basis. Physical Demand Level: Light. Must be able to occasionally (0-33% of the workday...Information System
$50k
...programs across national security, defense, and public... ...essential government systems and services, with proven... ...schedules across multiple technical and operational... ...s degree in Business, Information Systems, Engineering,... ...IT environment. Expert‑level experience managing...Information SystemContract workImmediate start$65k - $68k
...in the formulation of systems scope and objectives relative... ...in Computer Science, Information Systems Management, or... ...in a business analyst or requirements analyst... ...positions vary depending on multiple factors; including but... ...location, skill set, level of education,...Information SystemContract workWork at office- ...Good Laboratory Practices (GLP) are essential to maintain compliance and support audits. Ultimately, the QC Chemist helps... ...17025 accreditation standards. Proficiency in laboratory information management systems (LIMS). Previous experience working in a GMP-regulated environment...Information System
$80.2k - $111.3k
...and mission-critical systems, owning the technical... ...and influences broader security architecture and operations... ...handlers and SOC analysts, elevating investigative... ...ability to manage multiple simultaneous incidents... ...location, skill set, level of education, certifications...Contract workWork experience placementWork at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!
- data analyst part time work from home Lansing, MI
- senior data management analyst Lansing, MI
- senior information security analyst Lansing, MI
- remote data analyst intern Lansing, MI
- entry level data analyst no experience Lansing, MI
- remote data analyst part time Lansing, MI
- manufacturing systems analyst Lansing, MI
- computer forensic analyst Lansing, MI
- systems development analyst Lansing, MI
- system analyst Lansing, MI

