Cybersecurity Compliance Analyst

SAICArlington, VA
Onsite

About The Position

SAIC is seeking a Cybersecurity Compliance Analyst in Arlington, VA. The role involves providing administrative, technical, and analytical expertise of the Risk Management Framework, with knowledge of network operations and vulnerability management. This position is onsite in Arlington, VA. The Cybersecurity Compliance Analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (e.g., Scorecard, FISMA, Cybersecurity Workforce (CSWF), etc.). This includes coordinating with all applicable agencies, both within JS and outside organizations (to include, but not limited to DoW CIO, DISA, JSP, etc.) in meeting compliance reporting requirements. The analyst will participate in the bi-monthly DoW Pre-CISO meeting, advocating for JS designated CCA and CCMD equities, and participating in the regularly scheduled CCMD Cyber Scorecard Sync, and other DoW Cyber Hardening/Hygiene Scorecard-related meetings, as identified. Responsibilities include reviewing and consolidating JS and CCA Scorecard/FISMA/CSWF submissions, adjudicating non-compliance justifications, preparing the government client for non-compliant reporting by identified entities, and providing completed products prior to the applicable reporting suspense date for approval. Familiarity with current DoW risk management and reporting tools (i.e., DCS, COAMS, CMRS, PPSM Registry and eMASS) and DoD CIO/CISO portals (NIPR and SIPR) as appropriate is expected. The role also involves managing both classified and unclassified Continuous Monitoring Risk Scoring (CMRS) organizations for the JS.

Requirements

  • Knowledge of network operations and vulnerability management.
  • Familiarity utilizing current DoW risk management and reporting tools available (i.e., DCS, COAMS,CMRS, PPSM Registry and eMASS) and DoD CIO/CISO portals (NIPR and SIPR) as appropriate.

Responsibilities

  • Providing administrative, technical, and analytical expertise of the Risk Management Framework with knowledge of network operations and vulnerability management.
  • Consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (e.g., Scorecard, FISMA, Cybersecurity Workforce (CSWF), etc.).
  • Coordinating with all applicable agencies, both within JS and outside organizations (to include, but not limited to DoW CIO, DISA, JSP, etc.) in meeting compliance reporting requirements.
  • Participating in the bi-monthly DoW Pre-CISO meeting, advocating for JS designated CCA and CCMD equities.
  • Participating in the regularly scheduled CCMD Cyber Scorecard Sync, and other DoW Cyber Hardening/Hygiene Scorecard-related meetings, as identified.
  • Reviewing and consolidating JS and CCA Scorecard/FISMA/CSWF submissions.
  • Adjudicating non-compliance justifications.
  • Preparing government client for non-compliant reporting by identified entities.
  • Providing completed products prior to the applicable reporting suspense date for approval.
  • Managing both classified and unclassified Continuous Monitoring Risk Scoring (CMRS) organizations for the JS.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service