CyberSecurity Compiance Analyst

Are you an accomplished CyberSecurity expert and have experience in IT security and security controls?

Do you desire to be a valued member of a team delivering high-end IT services and consulting for a cabinet-level Federal Government agency?

Come join a dedicated, highly skilled multi-disciplinary team of IT, network, and cybersecurity professionals. 

The DO Chief Information Security Officer (CISO) is seeking a Cybersecurity Compliance Analyst to conduct assessments to identify trends and identify gaps within the controls. Are you are looking to take that next step up in your career and become a key member of a team supporting a large Federal Government agency?  Then we want to hear from you!

What You Will Get To Do:

  • Reading/Reviewing Policy and Procedure documentation relevant to Information Security provided by the client to gauge NIST compliance.

  • Perform gap analysis of the client’s organization and systems against the 110 NIST SP800-171r1 Security Requirements.

  • Generate Assessment Reports and artifacts such as System Security Plan (SSP); Security Test and evaluation (ST&E) Report; Plan of Actions and Milestones Report (POA&M); and Other Policy/Procedure Artifacts needed by the client as needed per the client’s contract agreement, which may include: Incident Response Plan, Access Control Policy, Etc.

  • Perform Cybersecurity Mitigation/Remediation Services Support to include Assistance with applying remediation action items against the customer environment. This includes environment design, hardware/software setup, creation of user guides, and Creation of Policy/Procedure documents using document templates.

  • Researching potential remediation action items for clients based on compliance gaps includes updating the client’s Plan of Action & Milestones (POA&M) artifact.

  • Depending on your level of knowledge and experience, you may provide software application development support related to Governance, Risk Management, and Compliance software.

  • Research of technical requirements necessary for Network Scanner.

  • Collect/provide feedback from client assessment engagements to further enhance the technical solution.

You Will Bring These Qualifications:

  • BS in Engineering, Cybersecurity, Information Technology, Computer Science, or equivalent.

  • 10 years of professional work experience, with 5 years of related experience in IT security, with knowledge of standard IT security best practices.

  • Excellent interpersonal and communications skills for interaction with customers, project leaders, team members, and other government agencies.

  • Ability to capture high-level technical information in a clear, concise manner.

  • Ability to think creatively and adapt creative thinking to what works for the organization.

  • U.S. Citizen.

  • Ability to attain and maintain a Public Trust

  • Exceptional organizational and time-management skills.

  • Experience working with and in Government projects desired.

What We Can Offer You:

Hill Associates is an affirmative action and equal opportunity, employer. Employment decisions will be made without regard to race, color, religion, sex, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information, or other characteristics protected by law.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require accommodation, please contact Hill Associates Recruiting Team at 202-656-6505 or via email at careers@hillasc.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Hill Associates offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.