Compliance Management Analyst

Description & Requirements

The Compliance Management Analyst will support OS in various aspects, including, but not limited to, OS Security Compliance, collaboration with OS Staff Divisions (StaffDiv), coalition building, and awareness programs that promote all OS Cybersecurity initiatives.

This support aims to enhance security posture and ensure overall compliance.

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code : TCS038, T2, Band 5

The scope of support includes assisting in the development, facilitation, and management of OS Cybersecurity programs that protect the confidentiality, integrity, availability, authenticity, and non-repudiation of OS information and systems.

This will involve implementing the risk management framework, among other activities, such as :

• Review the document life cycle and ensure all information system security officers (ISSOs) and system owners (SOs) manage the documents in the same manner.
• Assist in the implementation of any ATO process changes or innovations.
• Proactively assist in the early engagement of stakeholders to initiate the ATO process and drive progress throughout the process to assist stakeholders in meeting their ATO deadlines.
• Assist in the comprehensive risk review / technical review of the ATO package.
• Provide ongoing customer support and feedback throughout each stage of the OS ATO process.
• Assist ISSOs / SOs with documentation as needed.
• Prepare Authorizing Official (AO) memos.
• Process ATO and Interim Authorization to Test (IATT) packages.
• Review ATO packages and engage with relevant stakeholders and ISSOs / SOs as needed.
• Assist in updating tracking tools and managing "real-time" updates to reflect the current state of ATO status.
• Assist in the final preparation of packages for management review and approval.
• Assist the OS Security & Compliance Architecture Services team in providing mitigation consultations as well as visibility into, and the tracking of, mitigation activities.
• Support OS Vulnerability Management in all data calls and other OS-wide requests for information and reporting.
• Monitor OS Compliance Management Mailbox, and OS Cybersecurity and support the goal of responding to inquiries within 48 hours.
• Assist OS Compliance Management in activities related to FISMA quarterly and annual quarterly reporting.
• Assist OS Compliance Management in the annual OIG FISMA Audit.

Program Specific Responsibilities :

• Provide subject matter expertise and review all deliverables for relevancy and accuracy.
• Develop and execute plans to identify and communicate risk factors and best practices as needed.
• At the direction of federal staff, perform ad hoc tasks, including reviewing privacy-related policies, guidance, training, and other deliverables;

support events; and collaborate with OS, Departmental, OpDiv, and external parties on initiatives.

Experience in federal, state, or local government privacy compliance activities.

Minimum Requirements

TCS038, T2, Band 5

Program Specific Requirements :

• Bachelor's Degree; 3+ years of experience
• Cybersecurity Certification(s)
• Bachelor's degree in information technology, Cybersecurity, or similar (Preferred)
• Compliance-related industry certifications : CISSP, CISM CISA, CGRC (Preferred)

Additional Requirements, as per Contract / Client :

• Due to federal requirements, candidates must be US Citizen / Green Card Holder
• Must Be Eligible to Obtain Public Trust Clearance

EEO Statement

Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce.

We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country.

We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you.

A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action / Equal Opportunity Employer.

Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.

Pay Transparency

Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment.

Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards.

Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off.

Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience.

An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.

Annual Base Pay Minimum for this Position

70,000.00

Annual Base Pay Maximum for this Position

73,000.00