What are the responsibilities and job description for the Information Security/Cloud Compliance Analyst (Hybrid/Remote) position at Macro Solutions?
Operational Technology (OT) Security Engineer (2 openings)Location: Bethesda, MD (Hybrid — 3 days on-site, 2 days remote)Clearance: Must be able to obtain a Public TrustCitizenship: U.S. Citizens onlyType: Long-term contract or contract-to-hireMacro Pros is seeking two Operational Technology (OT) Security Engineers to support a federal agency in Bethesda, MD. This is a hands-on, customer-facing role supporting security assessments, controls, and compliance activities for IT and OT systems.ResponsibilitiesAdvise project teams on federal information security policies, controls, and SOPs.Ensure deployed enterprise technology solutions meet required security controls.Support OT systems and understand key differences between IT vs. OT from an A&A perspective.Assess and verify access controls; remediate POA&Ms and close findings.Conduct security assessments and documentation for systems with cloud components (IaaS, SaaS, etc.) through the full ATO process.Perform information security control assessments to validate ATO and audit readiness.Coordinate closely with the client’s A&A team on requirements, assessments, and remediation.Conduct complex vulnerability assessments and support risk mitigation strategies.Track non-compliance issues, corrective actions, and escalate as needed.Validate all cybersecurity tests are executed in alignment with policies and procedures.Work with RMF guidelines (NIST SP 800-82 Rev. 2 & 3) and relevant security tools.Review documentation and assess systems using RMF and other federal guidance.Requirements8 years of cybersecurity experience.4 years supporting U.S. federal government A&A/ATO processes.Strong background in Security Control Assessments and federal security documentation.Hands-on experience with OT/ICS systems, including OT overlays, SCADA, and industrial systems.Experience with contingency planning, BIA, and IR plans.Ability to tailor risk assessment approaches based on stakeholder expertise.Experience working with executives, stakeholders, and diverse teams.Experience with High Value Assets, CSAM, and NIST 800-82 r.3.Excellent communication skills — this is a customer-facing role.Bachelor’s degree in a related technical field.CISA certification required.Must currently reside in the Washington, DC metro area and able to work on-site in Bethesda 3 days a week.Ability to pass federal/commercial background check (i.e. no felony arrest record, US Citizen) #Dice
Salary : $165,000 - $175,000
