Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Information System Security Compliance Analyst (Multiple Levels)

$78.9k - $123.3k

Noblis

Responsibilities

Position Overview

We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.

The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.

Key Responsibilities

  • Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.

  • Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.

  • Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.

  • Develop, review, update, and maintain authorization package documentation, including:

  • System Security Plans (SSPs)

  • Security Assessment Reports (SARs)

  • Plan of Action and Milestones (POA&Ms)

  • Risk Assessments

  • Continuous Monitoring documentation

  • Security-related policies and procedures

  • Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.

  • Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.

  • Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.

  • Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.

  • Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.

  • Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.

  • Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.

  • Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.

  • Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.

  • Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.

Required Qualifications

  • Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.

  • Experience working with the NIST Risk Management Framework (RMF).

  • Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.

  • Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.

  • Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.

  • Experience tracking and managing POA&M findings through remediation and closure.

  • Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.

  • Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.

  • Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.

  • Strong written and verbal communication skills, including the ability to develop and review formal security documentation.

  • Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.

  • U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.

  • Ability to obtain and maintain an FAA Public Trust.

Education & Experience Substitutions

Substitutions are subject to government customer review and approval.

Mid to senior

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 9+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 15 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 6 years of experience in cybersecurity or network security roles.

Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300

Senior:

  • Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.

  • 16+ years of experience in cybersecurity or network security roles

  • Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.

  • A High School degree with a total of 20 years of experience in cybersecurity or network security roles

  • An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles

  • Masters degree with a total of 13 years of experience in cybersecurity or network security roles

Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525

Desired Qualifications

  • Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.

  • FAA or transportation sector experience preferred.

  • Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.

  • Experience managing authorization packages for multiple systems simultaneously.

  • Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.

  • Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.

  • Experience conducting control assessments, compliance reviews, and security documentation audits.

  • Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.

  • Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.

  • Familiarity with continuous monitoring programs and ongoing authorization requirements.

  • Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.

  • Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.

  • Industry certifications such as:

  • CISSP

  • CAP (Certified Authorization Professional)

  • Security+ CISM

  • GSLC

  • CGRC

  • or equivalent certifications

  • Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.

Overview

Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.

  • Remote/hybrid status is subject to change based on Noblis and/or government requirements

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.

If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .

EEO is the Law ( | E-Verify ( | Right to Work (

Total Rewards

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.

Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.

Posted Salary Range

USD $78,900.00 - USD $180,525.00 /Yr.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Information System Security Compliance Analyst (Multiple Levels) in Columbus, OH vacancy
  • $30 per hour

     ...development in fields such as information technology, technical/systems consulting, technical...  ...supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work...  ...remains posted. Career Level - IC0 About Us Only... 
    Information System
    Hourly pay
    Temporary work
    Internship
    Flexible hours

    Oracle

    Columbus, OH
    2 days ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security...  ...secure software and protect data and systems with appropriate security controls. Information...  ...; Perform ongoing activities in compliance with service and contractual... 
    Information System
    Local area
    Remote work

    Rubrik

    Columbus, OH
    4 days ago
  • $76.4k - $138.6k

     ...is fueled by vast amounts of information. Data is more valuable than ever...  ...data and information systems is central to doing business,...  ...and everyone in EY Information Security has a critical role to play....  ...As an Offensive Security Analyst on the Attack Surface Management... 
    Information System
    Summer holiday
    Local area
    Flexible hours

    EY

    Columbus, OH
    3 days ago
  •  ...that traverse DOD networks connected to the Global Information Grid (GIG). Aids in Enterprise security declaration, readiness, and sustainment services for...  ...of PPSM and IAVM programs. Performs automated vulnerability scanning and analyzes reports for compliance.... 
    Information System

    US Department of War

    Columbus, OH
    19 hours ago
  •  ...integrity and a culture of compliance, CBC Companies...  ...the Role: Information Security Analyst supports enterprise...  ...risks across internal systems, business initiatives...  ...vendors. Evaluate risk levels, document risk...  ...the ability to manage multiple priorities independently... 
    Suggested
    Temporary work
    Work at office
    Local area

    Factual Data

    Columbus, OH
    1 day ago
  •  ...Data Analyst, Identity & Access Management (IAM)...  ...support data-driven security decision-making. What...  ...reconciliation across multiple systems Reporting &...  ...IAM metrics, KPIs, and compliance requirements Maintain...  ...years of experience in Information Security Analysis,... 

    The Judge Group

    Columbus, OH
    4 days ago
  •  ...are currently seeking a Security Architect to shape and...  ...to protect systems, data, and infrastructure...  ...culture of security and compliance. The ideal candidate is...  ...Bachelor’s degree in information technology, cybersecurity...  ...coordinate efforts across multiple teams and stakeholders... 
    Temporary work
    For contractors
    Remote work

    FBT Gibbons

    Columbus, OH
    4 days ago
  •  ...IT Security Specialist Location: Columbus, Oh...  ...Operations team, this senior level IT Security will...  ...infrastructure security within multiple platforms to minimize...  ...Security Policy and Compliance: Enforce security...  ...Proficiency with operating systems (Windows, Linux) -... 
    Local area

    Argyle Infotech

    Columbus, OH
    2 days ago
  • $105k - $130k

     ...CampusGuard, a Nelnet company, provides information security and privacy consulting and compliance services primarily for campus-...  ..., network infrastructure, IT system configurations and physical security as it all relates to multiple compliance requirements. Performing... 
    Information System
    Temporary work
    Fixed term contract
    Local area
    Remote work
    Work from home
    Home office

    Nelnet

    Columbus, OH
    5 days ago
  • $35 - $55 per hour

     ...Job Title: Physical Security Systems Audit & Data Analyst Location: Columbus, OH (...  ...not focused on regulatory compliance, but rather on ensuring physical...  ...~ Ability to manage multiple review efforts...  ...Translate technical system information into understandable observations... 
    Contract work
    Work at office

    Blue Star Partners, LLC

    Columbus, OH
    3 days ago
  • $87.63k - $177.5k

     ...Responsible for large-scale security assignments providing...  .... Leads advanced level implementation, support...  ...security posture. The analyst will work closely with...  ...experience in system administration/help desk...  ...below: 2 or more years of Information Technology related experience... 
    Full time
    Work experience placement

    American Electric Power

    Columbus, OH
    4 days ago
  • $44.8k

     ...integrity, reliability, and security of critical technology systems by planning and executing audits across information systems and related...  ...or suggestions. Ensures compliance with IS audit standards, guidelines...  ...complex issues to higher-level staff. Ability to build... 
    Information System
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement

    Maximus

    Columbus, OH
    3 days ago
  •  ...Security Operations Center Specialist Huntington is looking for qualified candidates to become Security Operations Center Specialists...  ...resolving issues. Monitors complex alarm and surveillance systems and coordinates appropriate response to alerts. Access card... 
    Full time
    H1b
    Remote work
    Work from home
    Flexible hours
    Night shift

    Huntington

    Columbus, OH
    1 day ago
  • $108.31k - $160k

     ...Fully remote Information Technology Overview...  ...Cyber Threat Analyst to support the US...  ...development of new security content as the result...  ...iteratively search through systems and networks to...  ...of your highest level of education...  ...vary depending on multiple individualized factors... 
    Information System
    Full time
    Currently hiring
    Remote work
    Flexible hours

    GovCIO

    Columbus, OH
    1 day ago
  • $85k

     ...Network Defense Analyst Columbus, OH...  ...ensuring a more secure future. AGE Solutions...  ...enterprise-level Cyber Network Defense...  ...government information systems and network infrastructure...  ...assets across multiple operational...  ...are performed in compliance with established... 
    Information System
    Contract work
    Immediate start

    AGE Solutions LLC

    Columbus, OH
    4 days ago
  • $84.63k - $112.84k

     ...ecosystem. We enable secure, high-performance connectivity...  ..., vulnerability, system limits and constraints...  .... Recommend new information security systems and controls...  ...activities across multiple departments and...  ...the general nature and level of work performed by employees... 
    Information System
    Temporary work
    Remote work

    Lumen Inc

    Columbus, OH
    3 days ago
  • $90k - $110k

     ...Fully remote Cyber Security Services Overview...  ...currently hiring for an Information Systems Security Officer (...  ...FISMA and OMB A-130 compliance, responding to audits...  ...Establish system impact levels following FIPS 199...  ...may vary depending on multiple individualized factors... 
    Information System
    Full time
    Contract work
    Currently hiring
    Remote work
    Flexible hours

    GovCIO

    Columbus, OH
    4 days ago
  • $16 per hour

     ...mattersespecially for those balancing multiple commitments. That's why we're...  ...communication, you will be informed in advance of any schedule...  ...use our Donor Information System, prepare donor charts,...  ...to bloodborne pathogens (risk level 1), 90% of work tasks require... 
    Information System
    Hourly pay
    Minimum wage
    Extra income
    Temporary work
    Part time
    Local area
    Shift work
    Weekend work
    Afternoon shift
    Early shift

    Takeda Pharmaceuticals

    Columbus, OH
    2 days ago
  •  ...recruiters to obtain personal information from job seekers. Please be...  ...sensitive information such as Social Security numbers or bank details...  ...Erbil, Iraq Clearance Level Department of State - Secret...  ...veteran status. For OFCCP compliance, the taxable entity... 
    Local area
    Worldwide
    Overseas
    Long distance

    Janus Global

    Columbus, OH
    1 day ago
  • $40 - $50 per hour

     ...Job Description Job Description Job Title: IT Security Analyst – Junior Location: Columbus, OH (Hybrid – 3 days onsite per week,...  ...monitoring security-related projects to ensure alignment with service levels (budget, schedule, quality). Review, analyze, and report... 
    Contract work
    H1b
    Local area
    3 days per week

    Blue Star Partners LLC

    Columbus, OH
    23 days ago
  •  ...Remote Data Entry Operator / Entry Level About the job Remote Data Entry Operator...  ...Operator, under general supervision, enters information with a high degree of speed and accuracy...  ...of data into the customer information system and other Public Works software. This position... 
    Information System
    Remote work

    Jobcertify

    Columbus, OH
    19 hours ago
  •  ...DESCRIPTION Global Security | Technical...  ...This role is a VP level role. The Product...  ...physical security, compliance, and operational...  .... Ensure all systems meet regulatory and...  ...stakeholders across multiple lines of business...  ...experience in information security or technology... 
    Work at office
    Monday to Friday
    Weekend work
    Afternoon shift

    J.P. Morgan

    Columbus, OH
    13 days ago
  •  ...Manager within Global Security, you will protect...  ...a Vice President level role. The Product...  ...security, compliance, and operational...  ...completion. Ensure all systems meet regulatory...  ...across multiple lines of business...  ...Relevant experience in information security or technology... 
    Work at office
    Monday to Friday
    Weekend work
    Afternoon shift

    J.P. Morgan

    Columbus, OH
    13 days ago
  •  ...develop, and maintain secure, scalable...  ...Utilize ticketing systems, access management...  ...duties to support compliance and audit requirements...  ...Science, Information Systems, or related...  ...or as Solutions Analyst, Product Manager,...  ...environments with multiple cross-team dependencies... 
    Information System

    J.P. Morgan

    Columbus, OH
    12 days ago
  • $134.22k

     ...Maximus is hiring a Security Solutions Architect to serve...  ...requirements, researching information security standards, conducting system security and...  ...internal and/or external compliance activities Develops and...  ...architectural and solution-level security risks and collaborate... 
    Information System
    Contract work
    Work experience placement
    Remote work

    MAXIMUS

    Columbus, OH
    1 day ago
  •  ...clients. Currently, we are looking for entry-level software programmers, IT enthusiasts, Python/Java developers, data analysts/data scientists. We welcome candidates...  ...computer engineering, electrical engineering, information systems, IT Highly motivated, self-learner, and... 
    Information System

    SynergisticIT

    Columbus, OH
    3 days ago
  •  ...Summary: Provide security detail as...  ...orders and general information distributed by the...  ...any life safety systems, fire panels, CCTV...  ...Ensure training and compliance guidelines are...  ...employee, handling multiple priorities simultaneously...  ...the type and level(s) of work... 
    For contractors
    Local area

    Andy Frain

    Westerville, OH
    3 days ago
  •  ...clients. Currently, we are looking for entry-level software programmers, Java full stack...  ..., Python/Java developers, data analysts/data scientists, machine learning engineers...  ...computer engineering, electrical engineering, information systems, IT Highly motivated, self-learner,... 
    Information System
    Full time
    H1b

    SynergisticIT

    Columbus, OH
    4 days ago
  •  ...risk, controls, and regulatory compliance through operating model...  ...aligning control structures across multiple regulatory and risk...  ...local, regional, and national level. Own senior client relationships...  ...~ Bachelor's degree in Information Systems, Accounting, Finance, Risk Management... 
    Information System
    Local area

    RSM

    Columbus, OH
    2 days ago
  •  ...economy no client wants or has the resources to take an entry level person and spend resources on upgrading their skills and on...  ...Computer Science, Computer Engineering, Electrical Engineering, Information Systems, IT Highly motivated, self-learner, and technically... 
    Information System
    Immediate start
    Remote work

    SynergisticIT

    Columbus, OH
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!