Security & Compliance Analyst

Company: Genesis10
Location: Columbus
Posted on: April 11, 2025

Job Description:

Genesis10 is seeking a Security Compliance Analyst for an on-site direct hire position with a leading client in Columbus, OH. This full time position pays between $80k - $90k based on depth of skill.

Check out the role overview below If you are confident you have got the right skills and experience, apply today.

Job Description:
The Security Compliance Analyst actively engages in client's compliance initiatives, focusing on FedRAMP, NIST, CMMC, SOC 2 Type II, and SOX. The Security Compliance Analyst supports the Governance, Risk, and Compliance (GRC) program, provides subject-matter expertise on FISMA compliance, and maintains compliance controls. In addition, the Security Compliance Analyst will lead the Continuous Monitoring (ConMon) program, manage internal and external audits, manage remediation, maintain authorization packages, and stay current with emerging technologies and information security trends. Effective communication with leadership, clients, and vendors is essential for the successfully executing of these responsibilities.

Responsibilities: Supporting Governance, Risk, and Compliance (GRC) program, ensuring alignment with organizational goals.
Provides subject-matter expertise on FISMA compliance to internal and external stakeholders.
Monitors and maintains compliance controls to ensure continuous adherence to regulatory requirements.
Regularly reporting status and progress with leadership and client Information System Security Officer (ISSO).
Leads and manages efforts related to internal and external audits, ensuring all findings are addressed and remediated.
Maintains FedRAMP Authorization package and agency authorization packages, including the System Security Plan (SSP), Plan of Action & Milestones (POA&M), and other associated documentation.
Leads Continuous Monitoring (ConMon) program, interfacing with clients, the Security Operations Center, and the FedRAMP PMO to ensure ongoing compliance.
Conduct research and analysis to keep current with Information Security, GRC knowledge, and emerging technologies, incorporating new insights into the compliance program.
Performs other related duties as assigned.

Requirements: Bachelor's degree in Computer Science, Computer Engineering, or related field required or supporting industry certifications a plus.
One (1) to four (4) years of experience with leading FedRAMP Authorization or assessment activities.
Strong understanding of FISMA NIST 800-53 controls.
Comprehensive knowledge of FedRAMP and the Risk Management Framework (RMF) for both cloud and non-cloud environments.
Excellent interpersonal and communication skills, with the ability to work effectively as a team member and cross-functionally with internal and external stakeholders.
Proven ability to manage multiple priorities and workloads effectively, even when faced with conflicting demands.
Solution Engineering experience is an advantage.
Proficiency with security tools such as Nessus, Qualys, Sonarqube, or similar programs.
Experience with AWS GovCloud and AWS Certification.
Familiarity with additional compliance frameworks and standards, including NIST 800-171, CMMC, DoD IL series, Section 508, ISO 27001, HIPAA, PCI DSS, HITRUST, and TISAX.

About Genesis10:
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client.

Benefits of Working with Genesis10:
--- Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
--- The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
--- Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
--- Behavioral Health Platform
--- Medical, Dental, Vision
--- Health Savings Account
--- Voluntary Hospital Indemnity (Critical Illness & Accident)
--- Voluntary Term Life Insurance
--- 401K
--- Sick Pay (for applicable states/municipalities)
--- Commuter Benefits (Dallas, NYC, SF)

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Keywords: Genesis10, Columbus , Security & Compliance Analyst, Professions , Columbus, Ohio