×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information System Security Compliance Analyst; Levels

Job in Helena, Lewis and Clark County, Montana, 59604, USA
Listing for: Noblis
Full Time position
Listed on 2026-06-27
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 78900 - 180525 USD Yearly USD 78900.00 180525.00 YEAR
Job Description & How to Apply Below
Position: Information System Security Compliance Analyst (Multiple Levels)

Position Overview

We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous monitoring activities within a Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements, and maintaining the documentation necessary to support Authorization to Operate (ATO) decisions.

The ideal candidate will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization packages, POA&M management, and compliance documentation. Candidates should be comfortable working with technical teams to assess control implementation, identify compliance gaps, and provide guidance to support remediation efforts and POA&M closure.

Key Responsibilities
  • Manage the security authorization lifecycle for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements.
  • Coordinate activities required to obtain and maintain Authorization to Operate (ATO) approvals.
  • Assess and track implementation of NIST SP 800-53 security controls and associated compliance requirements.
  • Develop, review, update, and maintain authorization package documentation, including:
  • System Security Plans (SSPs)
  • Security Assessment Reports (SARs)
  • Plan of Action and Milestones (POA&Ms)
  • Risk Assessments
  • Continuous Monitoring documentation
  • Security-related policies and procedures
  • Manage POA&M activities by tracking findings, monitoring remediation progress, validating corrective actions, and supporting closure efforts.
  • Provide technical guidance and compliance recommendations to system owners, engineers, administrators, and security stakeholders to facilitate POA&M remediation and closure.
  • Coordinate with technical teams to gather evidence supporting security control implementation and compliance requirements.
  • Review vulnerability scan results, assessment findings, and security documentation to identify compliance gaps and areas requiring remediation.
  • Support continuous monitoring activities by tracking security posture, compliance status, and ongoing control effectiveness.
  • Participate in security assessments, audits, and compliance reviews conducted by internal and external stakeholders.
  • Assist in the development of risk mitigation strategies and recommendations for addressing identified security weaknesses.
  • Track authorization milestones, compliance deadlines, and remediation activities to ensure timely completion.
  • Communicate compliance status, risks, findings, and recommendations to both technical and non-technical stakeholders.
  • Support audits and reporting activities related to Federal cybersecurity requirements and organizational security programs.
Required Qualifications
  • Experience supporting cybersecurity compliance, security authorization, risk management, or information security programs.
  • Experience working with the NIST Risk Management Framework (RMF).
  • Subject matter expertise with NIST SP 800-53 security controls and Federal cybersecurity compliance requirements.
  • Experience supporting the development, maintenance, or review of authorization package documentation, including SSPs, SARs, POA&Ms, and Risk Assessments.
  • Understanding of the Authorization to Operate (ATO) process and continuous monitoring requirements.
  • Experience tracking and managing POA&M findings through remediation and closure.
  • Ability to review technical security information and translate findings into compliance documentation and actionable recommendations.
  • Understanding of cybersecurity principles, security controls, vulnerability management, and risk management concepts.
  • Strong organizational skills with the ability to manage multiple systems, priorities, and compliance activities simultaneously.
  • Strong written and verbal communication skills, including the ability to develop and review formal security documentation.
  • Proficiency with Microsoft Office applications, particularly Excel, Word, and PowerPoint.
  • U.S. Citizen or Green Card Permanent Resident with a minimum of three (3) years of U.S. residency.
  • Ability to obtain and maintain an FAA Public Trust.
Education &…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search