TOMORROW HIRE

Compensation

Full Description

Location: Washington, DC (Hybrid) Clearance Required: Active Secret Position Type: Full-Time We are seeking a skilled Cybersecurity / Data Compliance Analyst to support enterprise data and analytics initiatives for our federal client. The ideal candidate will bring expertise in security assessments, compliance frameworks, and risk management to ensure that systems and data practices meet federal cybersecurity requirements. This role will involve supporting Assessments & Authorizations (A&A), managing POA&Ms, conducting risk assessments, and aligning cybersecurity and data governance practices across mission-critical programs. Strong communication, documentation, and stakeholder engagement skills are essential, along with hands-on experience in eMASS and federal security standards. Primary Responsibilities: Support Assessments & Authorizations (A&A) processes in eMASS. Develop, track, and manage Plans of Action & Milestones (POA&Ms). Conduct risk assessments of systems and enterprise data processes. Collaborate with system owners and engineers to ensure compliance with federal security policies and standards (FISMA, NIST, DHS directives). Document findings, recommendations, and remediation actions for leadership and stakeholders. Assist in aligning data governance and cybersecurity practices across teams. Support internal and external compliance audits and reporting requirements. Provide advisory support on data protection, metadata management, and secure data sharing. Requirements Minimum Qualifications: Active Secret clearance (required at time of application). Bachelor’s degree in Cybersecurity, Information Systems, or a related field. 5+ years of experience in cybersecurity compliance, risk management, or A&A. Hands-on experience with eMASS and POA&M lifecycle management. Familiarity with NIST Risk Management Framework (RMF) and DHS/DoD security standards. Strong knowledge of FISMA, FedRAMP, and information assurance policies. Excellent documentation, analytical, and stakeholder communication skills. Preferred Qualifications: Security certifications such as Security+, CISSP, CISM, or equivalent. Experience supporting federal or regulated environments. Knowledge of secure data governance and metadata management practices. Eligibility: Must be legally authorized to work in the United States without employer sponsorship, now or in the future. Active Secret clearance required for this role. Salary: Competitive, commensurate with experience.