Information System Security Compliance Analyst (Multiple Levels)
$78.9k - $123.3kNoblis
Responsibilities
Position Overview
We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.
The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.
Key Responsibilities
Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.
Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.
Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.
Develop, review, update, and maintain authorization package documentation, including:
System Security Plans (SSPs)
Security Assessment Reports (SARs)
Plan of Action and Milestones (POA&Ms)
Risk Assessments
Continuous Monitoring documentation
Security-related policies and procedures
Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.
Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.
Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.
Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.
Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.
Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.
Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.
Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.
Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.
Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.
Required Qualifications
Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.
Experience working with the NIST Risk Management Framework (RMF).
Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.
Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.
Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.
Experience tracking and managing POA&M findings through remediation and closure.
Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.
Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.
Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.
Strong written and verbal communication skills, including the ability to develop and review formal security documentation.
Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.
U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.
Ability to obtain and maintain an FAA Public Trust.
Education & Experience Substitutions
Substitutions are subject to government customer review and approval.
Mid to senior
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
9+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 15 years of experience in cybersecurity or network security roles
Masters degree with a total of 6 years of experience in cybersecurity or network security roles.
Compensation Ranges: for D.C., NJ, Remote: $78,900 - $123,300
Senior:
Bachelor's degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
16+ years of experience in cybersecurity or network security roles
Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request.
A High School degree with a total of 20 years of experience in cybersecurity or network security roles
An Associates Degre with a total of 18 years of experience in cybersecurity or network security roles
Masters degree with a total of 13 years of experience in cybersecurity or network security roles
Compensation Ranges: for D.C., NJ, Remote: $95,500 - $180,525
Desired Qualifications
Experience supporting federal government programs, preferably within the FAA, Department of Transportation, or other civilian federal agencies.
FAA or transportation sector experience preferred.
Experience serving as an Information System Security Officer (ISSO), Security Control Assessor (SCA), Information System Security Manager (ISSM), or similar cybersecurity compliance role.
Experience managing authorization packages for multiple systems simultaneously.
Strong knowledge of NIST SP 800-53 Rev. 5, NIST RMF, FISMA, and related Federal cybersecurity requirements.
Experience developing, reviewing, and maintaining SSPs, SARs, POA&Ms, Risk Assessments, Contingency Plans, and other authorization artifacts.
Experience conducting control assessments, compliance reviews, and security documentation audits.
Ability to interpret technical findings from vulnerability scans, configuration assessments, and security reviews to support risk-based decision-making.
Experience providing technical guidance to engineering and operations teams to support corrective actions and POA&M closure.
Familiarity with continuous monitoring programs and ongoing authorization requirements.
Experience working with vulnerability management tools, compliance dashboards, and governance, risk, and compliance (GRC) platforms.
Knowledge of cloud security compliance, Zero Trust Architecture, and modern Federal cybersecurity initiatives.
Industry certifications such as:
CISSP
CAP (Certified Authorization Professional)
Security+ CISM
GSLC
CGRC
or equivalent certifications
Strong written, verbal, analytical, and interpersonal communication skills, with the ability to interact effectively with technical teams, auditors, system owners, and government stakeholders.
Overview
Noblis ( and our wholly owned subsidiaries, Noblis ESI , and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us (
Why work at a Noblis company?
Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards ( . Noblis maintains a drug-free workplace.
- Remote/hybrid status is subject to change based on Noblis and/or government requirements
Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.
If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us ( .
EEO is the Law ( | E-Verify ( | Right to Work (
Total Rewards
At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits ( page on our Careers ( site.
Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis' total compensation package.
Posted Salary Range
USD $78,900.00 - USD $180,525.00 /Yr.
$110k - $150k
...Job Title: Information Systems Security Analyst Company: Altus Engineering Location: Aberdeen Proving Ground... ...mapping of RMF actions required for multiple software packages. Develop and update... ...eligibility and be able to maintain this level of clearance. What We Offer: 401(k)...Information SystemWork at office$132k - $158k
...Description We are seeking an Information Security Analyst to serve as a key leader... ...of enterprise networks and systems supporting a mission ‑critical... ...systems meet stringent compliance, risk management, and security... ...in complex, enterprise‑level environments 5 years of experience...Information SystemContract workTemporary workWork experience placementMonday to Friday$102.5k - $188.9k
...proactively manage to secure success. Cyber threats... ...a Cyber Exploitation Analyst, you will support cyber... ...Do Monitor networks, systems, and applications for... ...manage and prioritize multiple tasks in a fast-paced... ...Cybersecurity, Computer Science, Information Systems, Engineering,...Information SystemWork at office$124.2k - $186.2k
...About the team: The Information Security organization advances the overall state of security... ...secure software and protect data and systems with appropriate security controls. Information... ...; Perform ongoing activities in compliance with service and contractual...Information SystemLocal areaRemote work$76.4k - $138.6k
...is fueled by vast amounts of information. Data is more valuable than ever... ...data and information systems is central to doing business,... ...and everyone in EY Information Security has a critical role to play.... ...As an Offensive Security Analyst on the Attack Surface Management...Information SystemSummer holidayLocal areaFlexible hours$77k - $172k
Overview Saalex Corporation is seeking a Senior Information Security Analyst in Saint Inigoes, MD . Saalex is an Engineering and Information Technology... ...protection of computer networks and information. Assess system vulnerabilities for security risks and propose and...Information SystemFull timeTemporary workInterim roleWork at officeRemote work2 days per week$90k - $110k
PRO OBJECT is seeking a Mid-Level Information Systems Security Officer in Maryland to support the Signals Analysis Division. The officer will ensure compliance and enhance the security posture using the Risk Management Framework. Your responsibilities will include maintaining...Information System- The Hispanic Alliance for Career Enhancement is seeking an Information Security Professional to conduct thorough Security Risk Assessments... ...collaborate closely with IT teams to evaluate security measures and compliance with regulations. This position requires 7+ years of...
$100k - $250k
...citizenship and an active TS/SCI security clearance and polygraph are... ...for this job, with multi-levels, is a general guideline only... ...This position is open to multiple levels of years of experience... ...could also be in computer or information systems design/development/analysis....Information SystemContract workTemporary workFor contractorsImmediate start- ...a Cybersecurity Compliance Analyst to Enter manage the... ...posture of systems implementing an ATO... ...coordinate with security assessors and Authorizing... ...but will support multiple customers in the... ...of federal information security regulations... ...GovRAMP or state-level compliance frameworks...Information SystemContract workWork at office
$54.07k - $86.51k
...JOB SUMMARY: The Information Security Analyst plays a key supporting role in the college... ..., this position monitors IT systems for potential threats, assists with policy compliance tasks, 3rd party vendor... ...Bachelor degree preferred. Entry-level certifications such as...Full timeTemporary workWork at officeLocal areaRemote workWeekend workAfternoon shift1 day per week- Tactibit Technologies provides innovative information technology, cybersecurity, and cloud... ...we do. About the Information Security Compliance Specialist position We are looking for... ...programs on complex government information systems. As an Information Security Compliance...Information SystemFlexible hours
$148.7k - $183.6k
...Citizenship is required for this role. Key Responsibilities: Lead secure application development practices across the software... ...college or university with a major in computer science, information systems, engineering, business, or other related scientific or technical...Information SystemFull timeContract workTemporary workWork experience placement- ...s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline... ...bachelor's degree. DoD 8570 compliance with IASAE Level 2 is required. Are you... ...environments to include those with multiple enclaves and with differing...Information System
- Job Description Security Analyst/Administrator For a complete... ..., Inc. is an information technology services firm... ...vulnerability assessments Compliance specific monitoring... ...profit) with different levels of technology.... ...environment supporting multiple customers at once Excellent...Remote workFlexible hours
$72.1k - $173.04k
Responsibilities Conduct thorough technical Security Risk Assessments on Production... ...including network engineers, developers, and system administrators, to understand how security... .... Required Qualifications 7+ years of information security or related experience. 7+...Full timeTemporary workLocal area- ...Digital Network Exploitation Analyst's (DNEA) in Ft. Meade.... ...cybersecurity data at multiple levels up and down the OSI... ...discrete mathematics). Information Technology (IT) and Information Security (IS) degrees may be considered... ...or information systems design/development/analysis...Information SystemTemporary workFor contractorsFlexible hours
$56k - $129k
...Computers, Cyber, and Intelligence (C5I) Edge Systems (TARCES) that are part of commercial... ...U.S. Citizenship. Hiring at multiple levels. Bachelor's degree in business or a related... ...identity, national origin, age, genetic information, citizenship, ancestry, marital status,...Contract workTemporary workLocal areaRemote workRelocation packageFlexible hours$55k - $60k
Technology Security Associates, Inc. is seeking a Junior Information Security Analyst to support secure facilities on NAS Patuxent River. Your role will include assisting with access control and maintaining compliance with US Government security regulations. You will ensure...$77k - $172k
...leading engineering firm in Maryland is seeking a Senior Information Security Analyst. The candidate will be responsible for planning and implementing... ...is required, including experience with military C6ISR systems. Candidates must possess a Bachelor's degree in a relevant...- ...focus to the business.Job Description:Security Operations & ToolingMonitor, tune, and... ...post-incident reviewsGovernance, Risk & Compliance (GRC)Support ongoing SOC 2 Type II compliance... ...3-5 years of experience in an information security role with exposure to both technical...
$85k - $270k
...citizenship and an active TS/SCI security clearance and polygraph... ...This position is open to multiple levels of years of experience;... ...must be directly related to Information Systems Security Engineering /... ...School Diploma DoD 8570 compliance with IAT Level I or higher...Information SystemContract workTemporary workImmediate start- ...candidate to serve as Mid‑Level Financial Systems Analyst supporting the... ...04 Statement of Compliance. Support monthly Chief... ...financial information, and identify issues... ...stakeholders to identify and secure available funds to... ...burn rates across multiple fund sources....Information SystemContract workInterim roleWork at office
- A leading IT solutions provider is seeking an Information Systems Security Officer (ISSO) Level 1 for its Annapolis Junction location. The ideal candidate will have five years of experience in information assurance and a Bachelor's degree in Computer Science. This part-...Information SystemPart time
$90k - $110k
Job Description IDS is seeking a Mid‑Level Information Systems Security Officer to support the Signals Analysis Division. The ISSO will maintain compliance and strengthen the security posture of mission systems using the Risk Management Framework and will be responsible...Information SystemLocal area$40 per hour
A leading AI security solutions provider is seeking experienced cybersecurity professionals to evaluate AI-generated security content.... ...selection and offers hourly pay starting at $40. Candidates from multiple locations, including the US and Canada, are welcome to apply....Hourly payRemote workFlexible hours- ...solutions for national security, is seeking qualified Information Security... ...Positions are open across multiple locations including... ...Meade. Information Systems Security Officer (... ...systems and ensure compliance with established policies... ...of experience. Level 1 - Bachelor’s and...Information System
- ...requirements to protect data and systems. Access Management and... ...accountable for the secure design, configuration,... ...The Systems Security Analyst is a member of the... ...provisioners, and Compliance Risk Management. Responsibilities... ...some understanding in multiple technologies/...Work experience placement3 days per week
$110k - $130k
Job Description IDS is seeking a Mid‑Level Systems Integration Engineer to support enterprise... ...Engineering, Systems Engineering, Information Technology, or related field Strong experience... ...storage Experience implementing security best practices including PKI certificate...Information SystemLocal area$5,000 per month
...woman‑owned Cyber & Physical Security Contractor located in... ...are seeking an experienced Information Systems Security Engineer to join our... ...by evaluating cybersecurity compliance protocols. Understanding Security... ...education and training. Multiple Positions The advertised...Information SystemFor contractors
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information System Security Compliance Analyst (Multiple Levels). Be the first to apply!
- data protection analyst Annapolis, MD
- data analyst - r python sql Annapolis, MD
- data analyst bank Annapolis, MD
- data analyst Annapolis, MD
- data center analyst Annapolis, MD
- senior financial data analyst Annapolis, MD
- provider data analyst Annapolis, MD
- sql data analyst Annapolis, MD
- information systems analyst Annapolis, MD
- data integrity analyst Annapolis, MD

