Demo
Salary Resume Critique Job Openings

Cybersecurity & Compliance Analyst

CyberSheath
Reston, VA Full Time
POSTED ON 2/19/2025
AVAILABLE BEFORE 4/25/2025

Job Description

Job Description

CyberSheath Services International LLC is a rapidly growing Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial Base (DIB). We are excited to be expanding our staff due to our growth and are looking to add an additional Compliance Analyst to our team!

CyberSheath integrates compliance and threat mitigation efforts and eliminates redundant security practices that don't improve and, in fact, may weaken an organization's security posture. Our professionals tell clients where to stop spending, where to invest, and how to take what they are already doing and integrate it in a way that delivers improved security.

Successful candidates for CyberSheath are self-motivated, think out of the box, work, and solve issues independently. Additionally, our most successful people are self-starters and willing to put on many hats in order to succeed. CyberSheath is fast-growing and seeks candidates who want to be part of our upward trajectory.

Opportunity Overview

As a Cybersecurity & Compliance Analyst, you will own all aspects of cybersecurity compliance for your assigned clients within CyberSheath's Managed Compliance Services. You will lead compliance efforts and provide oversight for the implementation of cybersecurity frameworks, manage client relationships, and ensure continuous compliance with industry regulations.

Your role will be pivotal in delivering compliance solutions to DIB contractors in accordance with DFARS 252.204- 7012, NIST SP 800-171, and CMMC. You will collaborate closely with client technical teams and third-party vendors to ensure compliance and mitigate risks across the entire security landscape.

Key Responsibilities

Managed Compliance Services Ownership

  • Primary Point of Contact : Own and lead all compliance efforts for assigned clients, acting as the primary advisor on cybersecurity compliance and regulatory alignment.
  • Client Communication : Maintain proactive communication with clients on compliance status, assessment results, and remediation Deliver regular updates through executive briefings, business reviews, and detailed reporting.
  • Regulatory Assessments : Lead and execute compliance assessments (e.g., DFARS, NIST 800-171, and CMMC Maturity Level 2). Perform annual assessments and ensure evidence-based control

Compliance Frameworks and Audits

  • Framework Implementation : Lead the implementation and continuous monitoring of compliance frameworks (e.g., NIST SP 800-171, CMMC). Develop and manage System Security Plans (SSPs) and Plans of Action & Milestones (POA&M) for clients.
  • Audit Preparation : Guide clients through internal and external audits, ensuring all necessary evidence, documentation, and artifacts are in place for successful certification.

    • Compliance Documentation & Policy Management

  • Documentation Development : Collaborate with clients to develop, update, and maintain compliance documentation, including policies, procedures, SSPs, POA&Ms, and other governance materials.
  • Policy Enforcement : Ensure compliance policies and procedures aligned with NIST 800-171, CMMC, and DFARS. Provide expertise in drafting and maintaining control documentation.

    • Incident Response & Risk Management

  • Incident Management : Develop and maintain incident response plans. Conduct tabletop exercises with clients to test incident response readiness and improve incident management capabilities.
  • Risk Assessments : Perform regular risk assessments to identify compliance gaps and develop mitigation strategies. Maintain risk registers and ensure continuous improvement of compliance postures.

    • Training & Awareness

  • Security Awareness Training : Deliver or facilitate client training programs, including basic security awareness, privileged user training, and handling of Controlled Unclassified Information (CUI).

    • Qualifications

    Hard Skills (Technical Acumen)

  • Technical Knowledge : Broad understanding of systems and security engineering principles, including :

    • Ability to build and troubleshoot systems (e.g., servers, Active Directory).

  • Understanding of network fundamentals, cloud technologies (IaaS, PaaS, SaaS), and cybersecurity
  • Industry Experience : Experience within the Defense Industrial Base (DIB), with expertise in assessing compliance for DIB contractors.
  • Framework Expertise : Direct, hands-on experience with NIST 800-171, CMMC, DFARS 252.204-7012. Must have led compliance assessments and demonstrated independent leadership of audits or regulatory
  • Certifications : CMMC Certified Assessor, CISSP, CISM, or other relevant cybersecurity certifications

    • Soft Skills (Grit, Communication, and Adaptability)

  • Grit : Passion for working in a challenging, fast-paced A "whatever it takes" attitude and a commitment to continuous learning and improvement.
  • Communication : Excellent verbal and written communication skills. Ability to convey complex compliance requirements clearly to both technical and non-technical stakeholders.
  • Adaptability : Comfortable working independently, pivoting when necessary, and raising your hand when additional resources are needed. Strong follow-through and reliability in meeting deadlines.

    • CyberSheath is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, national origin, age, protected veteran status, among other things, or status as a qualified individual with a disability.

    Budgeted Pay Range

    110,000—$130,000 USD

    Salary : $110,000 - $130,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Cybersecurity & Compliance Analyst?

    Sign up to receive alerts about other jobs on the Cybersecurity & Compliance Analyst career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $99,793 - $130,112
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $99,793 - $130,112
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $163,631 - $209,073
    Income Estimation: 
    $192,911 - $256,346
    Income Estimation: 
    $150,041 - $190,701
    Income Estimation: 
    $163,631 - $209,073
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $149,432 - $188,965
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at CyberSheath

    Cyber Security Analyst
    CyberSheath
    Hired Organization Address Reston, VA Full Time
    CyberSheath Services International LLC is a rapidly growing Security and IT Managed Services Provider primarily focused ...
    Service Dispatch Coordinator
    CyberSheath
    Hired Organization Address Reston, VA Full Time
    About CyberSheath CyberSheath Services International LLC is a rapidly growing Security and IT Managed Services Provider ...
    View More Jobs at CyberSheath

    Not the job you're looking for? Here are some other Cybersecurity & Compliance Analyst jobs in the Reston, VA area that may be a better fit.

    Cybersecurity Policy and Compliance Analyst

    631 Booz Allen Hamilton_United States, Dahlgren, VA

    Cybersecurity Policy and Compliance Analyst

    Booz Allen, Dahlgren, VA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!