What are the responsibilities and job description for the Information Security Compliance Analyst (A&A, OT/ICS) - Hybrid position at Macro Solutions?
Macro Pros (Alluvial Concepts) is seeking an Information Security Compliance Analyst with strong Assessment & Authorization (A&A) experience and deep knowledge of NIST SP 800-53 Rev. 5. This is a long-term contract with the potential to convert to full-time with one of the top government integrators in the industry.This is a hybrid role (2 days onsite in Bethesda, MD – flexible on days, 3 days remote).Requirements:Must currently live in the Washington, DC metro areaU.S. CitizenAbility to pass a standard background check and obtain a Public Trust clearanceWhat You’ll Do:Analyze, review, monitor, and reassess the adequacy of information security controls across the organizationExecute technical risk assessments using NIST SP 800-53 Rev. 5 across various systems, technologies, and environmentsPerform security audits, internal assessments, risk assessments, and support independent external auditsDevelop clear and effective methods for reporting assessment results to executive leadershipAdvise on and help establish sound information security processes and controls aligned with federal policies and SOPsWork closely with implementation teams to ensure solutions meet security requirements throughout the system lifecycleVerify that implemented controls are operating as designedLiaise with client A&A teams to support ATO efforts for new and existing systemsOrganize and conduct control assessments to validate ATO and audit readinessPartner with project managers, technical leads, and client stakeholders to assess, report, and remediate control gapsQualifications:6 years supporting federal government systems and conducting A&As for ATOsStrong experience evaluating system security posture and providing risk-based findings and recommendationsDemonstrated expertise with:NIST SP 800-53 Rev. 5, 800-37, 800-82 Rev. 3FIPS 199 & 200FISMA, CNSS, FISCAM, GAO Green BookExperience helping system owners and stakeholders understand and implement federal security requirementsProven ability to assess control design and operational effectivenessOT / ICS experience preferredClient Requirements:Bachelor’s degree in Computer Science, Information Systems, Engineering, Business, or a related fieldCISA certification#Dice
Salary : $158,000