Cyber Risk & Compliance Specialist
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Cyber Risk & Compliance Specialist ensuring the highest levels of security for technology partners in government. Driving compliance with NIST frameworks and other regulatory standards.
Responsibilities:
- Drive and support ATO readiness efforts across NIST 800-53, CMMC, and SOC 2 frameworks, focusing heavily on hands-on control implementation and evidence generation.
- Prepare, manage, and maintain ATO package documentation (SSPs, POA&Ms, and supporting artifacts), ensuring continuous accuracy, completeness, and audit-readiness.
- Coordinate seamlessly with external consultants and assessors, integrating their feedback into remediation strategies and documentation updates.
- Proactively track remediation progress and control gaps, escalating blockers and risks as needed.
- Draft, refine, and operationalize robust security policies, procedures, and standards aligned with applicable regulatory frameworks.
- Ensure controls are comprehensively documented with clear ownership, concrete implementation evidence, and recurring review cycles.
- Partner with Technology, Product, and Operations teams to seamlessly embed compliance requirements into existing workflows and toolsets.
- Manage and maintain the POA&M, driving the timely closure of identified gaps in tight coordination with system and control owners.
- Support ConMon activities, including meticulous log reviews, control validation, and recurring evidence collection.
- Assist with risk assessments, vendor security reviews, and the tracking of corrective actions.
- Maintain a state of ongoing audit preparedness through disciplined recordkeeping and strict process adherence.
- Serve as an approachable, knowledgeable compliance champion for Engineering, Infrastructure, and Operations teams.
- Translate rigid control requirements and framework language into clear, practical guidance that business owners can easily act on.
- Facilitate collaborative working sessions with system owners to gather evidence, clarify control expectations, and resolve complex implementation questions.
- Communicate clearly and frequently on status, timelines, and open items to ensure stakeholders remain aligned.
Requirements:
- 3–6 years of demonstrated experience in GRC, federal security compliance, or a closely related technical role.
- Deep, hands-on familiarity with NIST 800-53 is required.
- Proven track record of preparing ATO packages, SSPs, and POA&Ms.
- Solid working knowledge of CMMC, SOC 2, or NIST 800-171 environments.
- Demonstrated ability to implement and evidence controls, not just document them.
- Strong organizational and project management skills, with the ability to manage multiple complex workstreams with minimal oversight.
- Clear, highly effective written and verbal communication skills.
- U.S. citizenship is required; ability to support stringent federal compliance requirements.
Benefits:
- Equal employment opportunities (EEO) to all employees and applicants
Similar Jobs
System Director – Ethics & Compliance
System Director of Ethics and Compliance at OhioHealth. Overseeing compliance initiatives and managing the Ethics and Compliance Department.
Team Lead, Compliance Specialist
Team Lead Compliance Specialist leading a team for compliance operations. Managing investigations and engagement in software licensing with a focus on analytics and stakeholder communication.
Permitting & Compliance Specialist, LATAM
Compliance and Permitting Specialist handling permitting and compliance for parking facilities in LATAM. Researching regulations, managing licenses, and ensuring compliance across regions.
Senior Manager, Regulatory Affairs
Senior Manager of Regulatory Affairs seeking a candidate to manage FDA submissions and regulatory compliance. Join Hims & Hers in transforming healthcare with innovative solutions.
Bilingual Home Health Compliance Coordinator, HHA Exchange Proficiency
HHA Compliance Coordinator maintaining compliance standards for health aides in home care industry. Managing medical documentation and coordinating with recruitment and onboarding teams for clearances.
Director, Governance, Risk, and Compliance
Director of Governance, Risk & Compliance leading global compliance, risk, and federal authorization programs in quantum computing company.
Global Regulatory Affairs Manager, CMC (Pharmaceuticals)
Global Regulatory Affairs Manager CMC working remotely for a leading pharmaceutical company. Responsible for regulatory activities and CMC strategy.
Director of Regulatory Affairs
Director of Regulatory Affairs leading and scaling ARMRA's regulatory function across product lines. Managing compliance and ensuring regulatory approval for dietary supplements.
Privacy and Compliance Specialist
OneTrust Privacy & Compliance Specialist managing administration and configuration of OneTrust platform. Supporting privacy, data governance, and compliance programs for emerging pharma and biotech organizations.
Compliance Officer
Compliance Officer managing regulatory compliance and risk assessments for UK-based employer. Collaborating remotely from South Africa, focusing on compliance monitoring and policy implementation.
Compliance Officer
Compliance Officer providing strategic leadership and oversight for health plan compliance at Centene. Ensuring regulatory compliance and leading the compliance program for the New Jersey market.
Compliance Officer
Compliance Officer providing strategic leadership for compliance programs in health plans. Managing regulatory strategy and ensuring adherence to Medicare requirements in the New Hampshire market.
Vice President, PBM Compliance, Regulatory Operations
Vice President of Compliance overseeing PBM regulatory and privacy operations at Liviniti. Building a compliance program and ensuring adherence to regulations while leading a team.
Commercial Insurance, Compliance Coordinator
Compliance Coordinator at myCOI providing support to commercial clients in the insurance technology space. Focusing on accuracy in insurance documentation while ensuring client satisfaction and compliance.
Compliance Analyst
Compliance Analyst supporting compliance program for DME and Home Infusion billing services. Ensuring adherence to federal, state, and payer regulations while collaborating with various teams.
US Regulatory Affairs Specialist
Regulatory Affairs Specialist ensuring compliance with federal, state, and international regulations at Henry Schein. Collaborating cross-functionally to minimize regulatory risk and maintain compliance across operations.
Senior Consultant – Regulatory Strategy
Senior Consultant leading regulatory strategy projects for utility clients in energy sector. Overseeing project teams and ensuring successful delivery of client solutions while maintaining high-quality standards.
Federal Contracts & Compliance Manager
Federal Contracts & Compliance Manager overseeing GSA Schedule management and federal contract compliance. Handling regulatory advice, legal support, and compliance governance in a dynamic environment.
Compliance Solutions Specialist
Compliance Solutions Specialist working on AML compliance solutions, improving client support and internal processes at Sardine, leveraging technology and compliance expertise.
Senior Global Trade Compliance Manager
Global Trade Compliance Manager ensuring compliance with import/export laws for Lime's micromobility operations. Lead the trade compliance program to support global logistics and regulatory requirements.