Senior Public Sector Compliance Analyst
About The Position
We are seeking a skilled and technically adept Senior Public Sector Compliance Analyst to join our dynamic team at Autodesk. The ideal candidate will possess a strong understanding of security compliance frameworks, technical acumen, and the ability to assess and explain compliance requirements effectively to a variety of audiences. This role is crucial in ensuring our systems and processes comply with industry standards and regulatory requirements. This individual collaborates with control and service owners to facilitate effective onboarding processes and ensure successful audits within the FedRAMP environment. The Senior Public Sector Compliance Analyst will also play a key role in implementing automation for evidence collection and testing. The successful candidate will also provide expert ITAR consulting to relevant stakeholders and ensure compliance with ITAR requirements.
Requirements
- Bachelor's degree in Computer Science, Information Security, or a related field
- Minimum of 5 years of experience in security compliance, information security, or a related field, with a strong technical background
- Knowledge of security compliance frameworks, standards, and regulations (e.g., FedRAMP, ISO 27001, NIST, GDPR, CCPA, HIPAA, ITAR)
- In accordance with U.S. government contracting and Federal compliance obligations, this role requires U.S. citizenship or U.S. lawful permanent residency.
- Employment is contingent upon meeting all applicable government security and eligibility requirements
Nice To Haves
- Relevant certifications (e.g., CISSP, CISM, CISA) preferred
- Experience with FedRAMP, CMMC, IL4+, and ITAR security assessments is highly desirable
- Experience with cloud security and compliance (e.g., AWS, Azure, Google Cloud) is highly desirable, especially in a GovCloud/GCCH environment
- Experience in assessing security controls and explaining compliance requirements to technically minded control and service owners
- Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective solutions
- Excellent communication and interpersonal skills, with the ability to clearly articulate technical concepts to both technical and non-technical stakeholders
- Strong project management skills, with the ability to manage multiple projects and priorities simultaneously
- Experience building or leverage AI to support Compliance programs
Responsibilities
- Assess security controls to ensure alignment with regulatory requirements and industry best practices
- Provide expert guidance and assurance over relevant ITAR projects
- Collaborate with control and service owners to explain compliance requirements and provide guidance on how to meet these requirements effectively
- Implement and maintain automated processes for evidence collection and testing to streamline compliance efforts
- Support monthly continuous monitoring activities and maintain close partnership with vulnerability management teams
- Prepare and present detailed reports on compliance status, audit findings, and remediation plans to senior management, internal stakeholders, and external stakeholders
- Tracking, monitoring, and clear communication of open findings/POA&Ms
- Stay current with emerging security threats, vulnerabilities, and regulatory changes (e.g FedRAMP20x, CMMC, ITAR), and recommend proactive measures to mitigate risks
- Support response to emergency directives and data calls from government agencies (e.g. CISA)
Benefits
- health and financial benefits
- time away
- everyday wellness
- annual cash bonuses
- stock grants
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
