Data Compliance Analyst

Leidos Digital Modernization Sector has a dynamic opportunity for an experienced Data Compliance Analyst specializing in NIST SP 800-53 Rev. 5, and data retention policies. The ideal candidate will be responsible for ensuring compliance with information security standards, managing security risks, and overseeing the implementation and maintenance of data retention policies within our organization.

This position is part of the NOAA Cyber Security Center (NCSC) Security Operations Center (SOC) that executes 24x7 cybersecurity monitoring and incident response for NOAA networks.   

The position can be based in either Fairmont, WV or Boulder, CO.

Key Responsibilities:

• Develop, implement, and maintain information security policies and procedures in compliance with NIST SP 800-53 Rev. 5.
• Conduct risk assessments and security audits to ensure the integrity, confidentiality, and availability of information systems.
• Oversee the implementation of data retention policies, ensuring compliance with applicable regulations and standards.
• Familiarity with OMB 21-31 auditing policies and requirements
• Monitor and analyze security alerts and incidents, and provide timely response and remediation.
• Collaborate with IT and other departments to design and implement security controls and measures.
• Conduct training and awareness programs to educate staff on security policies and best practices.
• Understanding of network topologies, security architecture, and engineering.
• Proficiency in both Windows and Linux operating environments.
• Prepare and maintain documentation related to security assessments, policies, and procedures.
• Participate in security incident response and recovery activities.
• Stay current with emerging security threats, technologies, and regulatory changes.

Qualifications:

• Bachelor’s degree in Information Security, Computer Science, or a related field/
• CISSP/ CISM/CASP in lieu of degree
• Minimum of 10 years of experience in information security (specialized in RMF)
• Strong knowledge of NIST SP 800-53 Rev. 5 and data retention policies.
• Experience with risk assessment, security audits, and incident response.
• Familiarity with NARA, data
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Security+ required

Desired Attributes:

• Attention to detail and a commitment to maintaining high standards of security.
• Ability to work independently and as part of a team.
• Strong organizational skills and the ability to manage multiple tasks and projects simultaneously.
• Proactive and forward-thinking approach to information security.

Clearance: 

·       Must be a U.S Citizen. 

·       Currently have and be able to maintain security clearance, specifically DoD/Top Secret