Security & Compliance Analyst

NV5•Doral, FL

1d•Onsite

About The Position

NV5 Geospatial is actively recruiting a Security & Compliance Analyst . Strong capabilities in implementing, monitoring, and enforcing security policies, frameworks, and compliance controls across cloud-based and on-premises environments are . The Security & Compliance Analyst will be based at US Army Garrison Miami/ US Southern Command . US citizenship, along with the ability to successfully pass a basic background check for access to US military bases, is for employment. The successful candidate will have an active TS/SCI clearance. Work Setting: Onsite - US Army Garrison – Miami / SOUTHCOM HQ Potential travel up to 15-15% of the time NV5 is a global technology solutions and consulting services company with a workforce of over 4,500 professionals in more than 100 offices worldwide. NV5’s continued growth has been spurred through strategic investments in firms with unique capabilities to help current and future customers solve the world’s toughest problems. The NV5 family brings together talent across a wide range of markets and fields, including Professional Engineers, Professional Land Surveyors, Architects, Photogrammetrists, GIS Professionals, Software Developers, IT, Project Management Professionals, and more. At NV5 Geospatial, we are a collaboration of intelligent, innovative thinkers who care for each other, our communities, and the environment. We value both heart and head, the diversity of our people, and their experiences because that is how we continue to grow as a leader in our industry and expand our individual and collective potential.

Requirements

Bachelor's degree in Cybersecurity, Information Assurance , Computer Science or a related field, or five ( 5 ) years of equivalent experience in security and compliance roles .
Demonstrated experience in conducting security audits, assessing system compliance with DoD cybersecurity policies, and implementing security controls in cloud and hybrid environments.
Demonstrated proficiency with NIST 800-53, FedRAMP, DoD IL4/IL5 security policies and risk assessment methodologies.
Strong understanding of IAM, security monitoring tools (Splunk, SIEM solutions), ZTA, and vulnerability assessment frameworks.
Experience with security automation, endpoint protection, and incident response processes.
Ability to manage and prioritize complex project tasks.
Active TS/SCI

Nice To Haves

Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or AWS Certified Security – Specialty.
Portuguese or Spanish language skills.
Experience with government IT programs and environments.

Responsibilities

Monitor and validate Kubernetes and data lake deployments for compliance with RMF, NIST 800-53, and DoD IL4/IL5 requirements, in collaboration with agency cybersecurity teams.
Maintain continuous monitoring dashboards and conduct vulnerability scans of deployed infrastructure and workloads, supporting the agency’s ATO process and risk posture.
Prepare and update system security documentation including SSPs, SARs, and POA&Ms to reflect changes to architecture, controls, or risk conditions.
Enforce encryption, logging, and identity access policies (IAM, RBAC, audit logging) to maintain traceability and accountability across the Kubernetes-based data layers.