Data Compliance Analyst

Job Title

Data Compliance Analyst

Location

Boulder, CO 80302 US
Fairmont, WV 26554 US (Primary)

Category

Information Technology

Job Type

Full-time

Career Level

Staff

Education

High School / GED

Travel

None

Security Clearance Required

TS

Job Description

TMC Technologies is in search of an experienced Data Compliance Analyst specializing in NIST SP 800-53 Rev. 5, and data retention policies. The ideal candidate will be responsible for ensuring compliance with information security standards, managing security risks, and overseeing the implementation and maintenance of data retention policies.  This position is part of the NOAA Cyber Security Center (NCSC) Security Operations Center (SOC) that executes 24x7 cybersecurity monitoring and incident response for NOAA networks.  Due to federal contract requirements, the candidate must be a US citizen and possess a minimum of an active Top Secret clearance in order to start. 

The Data Compliance Analyst will have the following responsibilities: 

- Develop, implement, and maintain information security policies and procedures in compliance with NIST SP 800-53 Rev. 5. 
- Conduct risk assessments and security audits to ensure the integrity, confidentiality, and availability of information systems. 
- Oversee the implementation of data retention policies, ensuring compliance with applicable regulations and standards. 
- Familiarity with OMB 21-31 auditing policies and requirements 
- Monitor and analyze security alerts and incidents, and provide timely response and remediation. 
- Collaborate with IT and other departments to design and implement security controls and measures. 
- Conduct training and awareness programs to educate staff on security policies and best practices. 
- Understanding of network topologies, security architecture, and engineering. 
- Proficiency in both Windows and Linux operating environments. 
- Prepare and maintain documentation related to security assessments, policies, and procedures. 
- Participate in security incident response and recovery activities. 
- Stay current with emerging security threats, technologies, and regulatory changes.

Job Requirements

- US Citizen and Top Secret Clearance required
- Bachelor’s degree in Information Security, Computer Science, or a related field required; CISSP/CISM/CASP in lieu of degree 
- Minimum of 10 years of experience in information security (specialized in RMF) required
- Strong knowledge of NIST SP 800-53 Rev. 5 and data retention policies required
- Experience with risk assessment, security audits, and incident response required
- Familiarity with NARA, data 
- Strong analytical and problem-solving skills. 
- Excellent communication and interpersonal skills. 
- Security required  

Preferred Qualifications:
Attention to detail and a commitment to maintaining high standards of security. 
Ability to work independently and as part of a team. 
Strong organizational skills and the ability to manage multiple tasks and projects simultaneously. 
Proactive and forward-thinking approach to information security. 

The pay range for this position is $102,000 - $120,100.

We are equal opportunity/affirmative action employers, committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status, or any other protected characteristic under state or local law.