The Cybersecurity Compliance Analyst will conduct assurance assessments and validate the effectiveness of cybersecurity controls across the organization. In addition, the Cybersecurity Compliance Analyst will conduct assessments to identify trends, systemic issues, and opportunities for leadership and system owner action. He/She will support critical Cybersecurity initiatives as identified by the OCSO to include IT control testing, CMMC readiness, and CMMC certifications. This position will serve as a trusted advisor to IT systems owners and stakeholders on topics related to cybersecurity controls and assurance. This position requires cybersecurity standards subject matter expertise, the ability to translate standards to non-assurance staff, positive communication, and the ability to synthesize complex information. The Cybersecurity Compliance Analyst is a key individual whose responsibilities directly contribute to maintaining a strong, compliant cyber security posture within the firm.
Experience/Skills Required:
- Bachelors degree with at least 6 years of related experience is required
- At least 2 years of experience in private sector / back-office IT Operations or Assurance.
- Fluency in NIST 800-53, NIST 800-171, and CMMC standards
- Strong communications skills, attention to detail, ability to forge strong partnerships.
