Cybersecurity Compliance Analyst​/Active Secret Clearance- onsite Fort Meade, MD

Overview

Cybersecurity Compliance Analyst

We’re looking for a mid-level Information Systems Security Officer (ISSO) to support our cybersecurity program in securing both classified and unclassified environments. This role is responsible for maintaining compliance with federal and organizational security requirements, assisting with Risk Management Framework (RMF) processes, and supporting system accreditation and ongoing continuous monitoring efforts.

The company is located in Fort Meade, MD and will be 5 days onsite
.

The candidate must have Active Secret Clearance (Top Secret Preferred).

• Apply and uphold organizational cybersecurity policies, standards, and procedures.
• Develop, update, and maintain System Security Plans (SSPs), risk assessments, and other RMF-related documentation.
• Support Authority to Operate (ATO) activities in accordance with the NIST Risk Management Framework.
• Conduct vulnerability scanning, evaluate findings, and work with IT teams to drive remediation efforts.
• Perform security assessments and audits to verify compliance with NIST 800-53, DoD STIGs, and agency-specific requirements.
• Maintain comprehensive cybersecurity documentation, artifacts, and compliance evidence.
• Serve as a liaison among system owners, ISSMs, technical teams, and external auditors.
• Monitor, analyze, and assist in responding to security incidents in coordination with the incident response team.
• Lead and document STIG compliance activities.
• Contribute to security working groups, briefings, and formal assessments.

• Active U.S. DoD Secret clearance
  .
• Bachelor’s degree and 5 years of information security experience.
• Current DoD 8140 / 8570 certification (e.g., CISSP or Security+).
• Active IAT Level II certification.
• At least 2 years of direct experience supporting ATO/RMF processes.
• Hands-on experience with accreditation tools such as eMASS or XACTA.
• Strong written and verbal communication skills.
• Experience producing documentation aligned with NIST guidance, FISMA, and FISCAM requirements.
• Solid understanding of NIST 800-53 (Rev 4 or current) and the ability to document control implementation statements accurately.

Applicants must be currently authorized to work in the United States on a full-time basis now and in the future. This position does not provide sponsorship.