remote
IT Compliance Analyst - CSA
Software Engineer
IT Compliance Analyst responsible for managing RMF processes, approving Security Plans, SAPs, SARs, and Continuous Monitoring for multiple ATO packages in a defense environment.
About the role
Key Responsibilities
- Lead the RMF lifecycle for multiple Authorization to Operate (ATO) packages, ensuring timely Security Plan, SAP, SAR, and Security Assessment Package approvals.
- Coordinate with cross‑functional teams to gather and validate security controls, documentation, and evidence for continuous monitoring.
- Conduct risk assessments, identify gaps, and recommend mitigation strategies to maintain compliance with DoD and federal regulations.
- Prepare and present compliance status reports to senior stakeholders and client leadership.
- Maintain up‑to‑date knowledge of RMF guidance, NIST standards, and evolving security requirements.
Requirements
- 3+ years of experience in IT security compliance within a defense or federal environment.
- Hands‑on experience with RMF, ATO processes, and continuous monitoring frameworks.
- Strong understanding of NIST SP 800‑53 controls and DoD acquisition regulations.
- Excellent analytical, documentation, and communication skills.
- Ability to work independently and manage multiple concurrent compliance projects.
Skills
iamexcelsapproject managementprocess improvement