Dev Technology
Security Compliance Analyst (Secret Clearance)
Dev Technology, Colorado Springs, Colorado, United States, 80509
Security Compliance Analyst (Secret Clearance)
Security Compliance Analyst, #980 Clearance: U.S. Citizenship is required. DHS Secret Clearance required. Candidates with dual citizenship cannot be considered per government requirements. Dev Technology is seeking a Security Compliance Analyst to support a federal client in maintaining compliance and strengthening the security posture of mission-critical systems. As part of our dedicated team, the Security Compliance Analyst will ensure adherence to government security requirements, manage Plans of Action and Milestones (POA&Ms), and support ongoing risk and vulnerability management activities vital to safeguarding critical systems and data in defense of our Homeland. What You'll Be Doing: Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns. Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements. Support vulnerability management efforts, including reviewing scan results, tracking remediation activities, and verifying closure of findings. Conduct risk management activities, including risk assessments, risk analysis, and documentation of risk mitigation strategies. Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800-53, RMF). Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses. Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success. Participate in incident response and after-action reviews, documenting lessons learned and compliance impacts. Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors. Contribute to security awareness and training initiatives to promote compliance across operational teams. Required Education, Experience, and Skills: Active Secret clearance required. U.S. Citizenship required (dual citizens not eligible due to federal contract requirements). Experience with federal government contracts, with a preference for contracts under Homeland Security. 7+ years of experience in security compliance, vulnerability management, or related cybersecurity field. 4+ years of experience with:
Managing and tracking POA&Ms within government contracting environments. Federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF). Vulnerability management processes and tools. Risk management activities, including conducting risk assessments and risk analysis. Collaboration with technical teams to address findings and implement compliance solutions.
Strong written and verbal communication skills with the ability to prepare compliance documentation and reports. Candidates must reside within a commutable distance for daily onsite work and meet recall/on-call requirements in a 24x7x365 environment. Preferred Education, Experience, and Skills: Certifications in the security field, such as CISSP, CISM, CAP, or similar. Recent DHS experience with security compliance, risk management, or assessment activities. Our estimated salary range for this position is $80,000-$85,000. This presented salary range is not a guarantee of compensation or salary. Offered salary is based on education, experience, geographic location, and possibly contractual requirements as appropriate to the role. *Salary could fall outside of this range. Who We Are: Dev Technology is a growing IT company with an employee-centric culture that works on mission-critical projects for the federal government. We partner with our federal customers to deliver technology services and solutions, and to drive our client's missions forward through innovation. We use Agile and DevSecOps principles to provide services including application development, biometrics and identity management, cloud and infrastructure optimization, IT and legacy modernization, and data management. As a Washington Post Top Workplace award winner for the past TWELVE years in a row, the Top Workplaces USA for the past five years, and a recipient of the Companies As Responsive Employers (CARE) Award for the past six years, Dev Technology employees enjoy: Generous and flexible time-off policy Flexible work schedules and telework options, including remote work availability for eligible projects Career development opportunities including a mentorship program, technical and management training through Dev University, hands-on learning through DevLab, tuition reimbursement, and paid training opportunities Industry-leading benefits including a choice of two health plans that include dental and vision, flexible spending account, commuter benefits, life insurance, and more 401K matching with a 5% matching contribution Regular team and company social events including our annual party, happy hours, fitness challenges, and more A focus on community engagement including company wide support activities, employer match for donations, and time off for volunteer efforts Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans Dev Technology Group operates in the following states: AL, AR, AZ, CO, DC, FL, GA, ID, IL, IN, MD, MA, ME, MI, MN, MO, NC, NJ, OH, OR, PA, SC, TN, TX, VA, WV.
Security Compliance Analyst, #980 Clearance: U.S. Citizenship is required. DHS Secret Clearance required. Candidates with dual citizenship cannot be considered per government requirements. Dev Technology is seeking a Security Compliance Analyst to support a federal client in maintaining compliance and strengthening the security posture of mission-critical systems. As part of our dedicated team, the Security Compliance Analyst will ensure adherence to government security requirements, manage Plans of Action and Milestones (POA&Ms), and support ongoing risk and vulnerability management activities vital to safeguarding critical systems and data in defense of our Homeland. What You'll Be Doing: Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns. Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements. Support vulnerability management efforts, including reviewing scan results, tracking remediation activities, and verifying closure of findings. Conduct risk management activities, including risk assessments, risk analysis, and documentation of risk mitigation strategies. Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800-53, RMF). Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses. Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success. Participate in incident response and after-action reviews, documenting lessons learned and compliance impacts. Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors. Contribute to security awareness and training initiatives to promote compliance across operational teams. Required Education, Experience, and Skills: Active Secret clearance required. U.S. Citizenship required (dual citizens not eligible due to federal contract requirements). Experience with federal government contracts, with a preference for contracts under Homeland Security. 7+ years of experience in security compliance, vulnerability management, or related cybersecurity field. 4+ years of experience with:
Managing and tracking POA&Ms within government contracting environments. Federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF). Vulnerability management processes and tools. Risk management activities, including conducting risk assessments and risk analysis. Collaboration with technical teams to address findings and implement compliance solutions.
Strong written and verbal communication skills with the ability to prepare compliance documentation and reports. Candidates must reside within a commutable distance for daily onsite work and meet recall/on-call requirements in a 24x7x365 environment. Preferred Education, Experience, and Skills: Certifications in the security field, such as CISSP, CISM, CAP, or similar. Recent DHS experience with security compliance, risk management, or assessment activities. Our estimated salary range for this position is $80,000-$85,000. This presented salary range is not a guarantee of compensation or salary. Offered salary is based on education, experience, geographic location, and possibly contractual requirements as appropriate to the role. *Salary could fall outside of this range. Who We Are: Dev Technology is a growing IT company with an employee-centric culture that works on mission-critical projects for the federal government. We partner with our federal customers to deliver technology services and solutions, and to drive our client's missions forward through innovation. We use Agile and DevSecOps principles to provide services including application development, biometrics and identity management, cloud and infrastructure optimization, IT and legacy modernization, and data management. As a Washington Post Top Workplace award winner for the past TWELVE years in a row, the Top Workplaces USA for the past five years, and a recipient of the Companies As Responsive Employers (CARE) Award for the past six years, Dev Technology employees enjoy: Generous and flexible time-off policy Flexible work schedules and telework options, including remote work availability for eligible projects Career development opportunities including a mentorship program, technical and management training through Dev University, hands-on learning through DevLab, tuition reimbursement, and paid training opportunities Industry-leading benefits including a choice of two health plans that include dental and vision, flexible spending account, commuter benefits, life insurance, and more 401K matching with a 5% matching contribution Regular team and company social events including our annual party, happy hours, fitness challenges, and more A focus on community engagement including company wide support activities, employer match for donations, and time off for volunteer efforts Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans Dev Technology Group operates in the following states: AL, AR, AZ, CO, DC, FL, GA, ID, IL, IN, MD, MA, ME, MI, MN, MO, NC, NJ, OH, OR, PA, SC, TN, TX, VA, WV.