Security Compliance Specialist

About The Position

Requirements

• Bachelor’s degree in Information Technology or related field.
• 5+ years of relevant experience in cybersecurity compliance, information security, network infrastructure, or a related field.
• Knowledge of network infrastructure concepts, including routers, switches, and security enforcement technologies such as firewalls, web filters, and Zero Trust architectures.
• Experience presenting technical concepts in business-friendly and user-friendly language.
• Experience resolving technical issues and implementing strategies to prevent recurrence.
• Experience creating reports and communications for multiple audiences, including technical and executive stakeholders.
• Excellent written, verbal, and interpersonal communication skills.
• Self-motivated with the ability to take ownership of projects and drive them to completion.

Nice To Haves

• Experience supporting large enterprise environments with more than 35,000 users.
• Experience collaborating across client and peer technical teams.
• Experience with Splunk.
• CISSP, CISM, and/or CISA certification.
• Experience managing and resolving incidents through ticketing systems such as ServiceNow and JIRA.
• Understanding of AWS and Azure cloud technologies and terminology.
• Experience working with audit, security, and systems administration teams to address technical and compliance-related issues.
• Experience applying NIST 800-53 and other federal security standards.
• Experience supporting Continuous Monitoring (ConMon) activities.

Responsibilities

• Apply cybersecurity frameworks based on NIST 800-53 Revision 5.
• Apply system-specific security rules and configurations aligned with DISA STIG standards.
• Review and remediate security audit findings through Plans of Action and Milestones (POAMs).
• Review monthly vulnerability reports and collaborate with technical teams to remediate findings.
• Analyze vulnerability and audit data to identify trends, reporting criteria, and process improvement opportunities.
• Defend and document operational practices during audits and reviews.
• Maintain a comprehensive inventory of annual audits, required artifacts, and key points of contact (POCs) and subject matter experts (SMEs).
• Develop and maintain operational documentation related to security practices, user management, and system-specific Standard Operating Procedures (SOPs).
• Update and maintain internal Wiki documentation.
• Create and deliver monthly, quarterly, and annual reports as required.
• Tailor reporting and communications to technical, management, and executive audiences.

Benefits

• health insurance
• dental insurance
• vision insurance
• life insurance
• 401(k) plan with matching and immediate vesting