We're Hiring! Cybersecurity Analyst (Mid-Level)

OverviewWe are seeking a detail-oriented and highly knowledgeable Cybersecurity Compliance Analyst to join our Information Security team. This role is responsible for implementing, maintaining, and auditing cybersecurity compliance frameworks across our systems and infrastructure. You will ensure our policies and controls align with industry and government cybersecurity standards, particularly within the context of defense and federal contracts.This position requires deep familiarity with government regulations, risk management frameworks, and technical security standards, including NIST, DFARS, ISO, and CMMS guidelines.ResponsibilitiesLead initiatives to comply with the Cybersecurity Maturity Model Certification (CMMC), including gap assessments and remediation terpret and implement controls from NIST SP 800-171 and NIST SP 800-53, focusing on protecting Controlled Unclassified Information (CUI) in nonfederal systems.Manage compliance efforts for DFARS 252.204-7012, including security requirements for safeguarding Covered Defense Information (CDI) and incident reporting.Support implementation and continuous improvement of our ISO/IEC 27001 Information Security Management System (ISMS).Conduct security configuration assessments in alignment with STIG (Security Technical Implementation Guides).Maintain a centralized compliance tracking system (e.g., CMMS) to document security posture, control implementation, and audit readiness.Collaborate with IT, Engineering, and Legal teams to ensure continuous alignment with evolving regulations and customer requirements.Support audits, internal assessments, and incident response processes, ensuring traceable documentation and risk mitigation plans.QualificationsRequired:Bachelor’s degree in Cybersecurity, Information Technology, or a related field.3+ years of experience in cybersecurity compliance, audit, or risk management.Hands-on experience applying NIST frameworks (800-171 and/or 800-53).Familiarity with U.S. Department of Defense cybersecurity regulations, including DFARS and CMMC.Strong understanding of ISO/IEC 27001 and associated governance practices.Experience working with or implementing STIGs in enterprise environments.Excellent communication, documentation, and cross-functional collaboration skills.Preferred:Security or audit certifications such as CISSP, CISA, CISM, or ISO 27001 Lead Implementer.Experience with compliance management systems (CMMS or GRC tools).Background in federal contracting or working with Defense Industrial Base (DIB) suppliers.Other Requirements:Must have a valid work authorization for United States of America: visa sponsorship is not available for this role.Must be within commuting distance from Santa Monica, CA or planning to relocate.What We OfferSalary range of 95K-120KFull Health CoverageA collaborative and intellectually driven team environment #J-18808-Ljbffr

Created: 2025-09-17