Maximus
Description & Requirements
Maximus is seeking a Cybersecurity Analyst to support a federal client in maintaining compliance and strengthening the security posture of mission‑critical systems. The Security Compliance Analyst will ensure adherence to government security requirements, manage Plans of Action and Milestones (POA&Ms), and support ongoing risk and vulnerability management activities vital to safeguarding critical systems and data in defense of our Homeland. Job‑Specific Essential Duties and Responsibilities
Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns. Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements. Support vulnerability management efforts, including running security scans, reviewing scan results, tracking remediation activities, and verifying closure of findings. Conduct risk management activities including risk assessments, risk analysis, and documentation of risk mitigation strategies. Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800‑53, RMF). Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses. Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success. Participate in incident response and after‑action reviews, documenting lessons learned and compliance impacts. Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors. Contribute to security awareness and training initiatives to promote compliance across operational teams. Job‑Specific Minimum Requirements
Active Secret clearance required. Only US Citizens are considered; dual citizenship candidates are ineligible. 7+ years of experience in security compliance, vulnerability management, or related cybersecurity field. 4+ years of experience managing and tracking POA&Ms within government contracting environments. In‑depth knowledge of federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF). Experience with vulnerability management processes and tools. Experience conducting risk assessments and risk analysis. Ability to collaborate with technical teams to address findings and implement compliance solutions. Strong written and verbal communication skills with the ability to prepare compliance documentation and reports. Residency within a commutable distance for daily onsite work and readiness for recall/on‑call in a 24/7/365 environment. Preferred Skills and Qualifications
Certifications such as CISSP, CISM, CAP, or similar. Experience with federal government contracts, preferably under Homeland Security. Recent DHS experience in security compliance, risk management, or assessment activities. Familiarity with security tools including antivirus, vulnerability scanners, access control, endpoint protection, PKI certificate management, logging/SEIM, and DLP. EEO Statement
Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency
Maximum Salary: $120,000.00 Accommodations
Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process—including accessing job postings, completing assessments, or participating in interviews—please contact People Operations at
applicantaccommodations@maximus.com .
#J-18808-Ljbffr
Maximus is seeking a Cybersecurity Analyst to support a federal client in maintaining compliance and strengthening the security posture of mission‑critical systems. The Security Compliance Analyst will ensure adherence to government security requirements, manage Plans of Action and Milestones (POA&Ms), and support ongoing risk and vulnerability management activities vital to safeguarding critical systems and data in defense of our Homeland. Job‑Specific Essential Duties and Responsibilities
Serve as the primary point of contact for security compliance activities, collaborating with stakeholders to track and resolve security concerns. Manage and maintain POA&Ms, ensuring timely remediation of findings and alignment with government and contract requirements. Support vulnerability management efforts, including running security scans, reviewing scan results, tracking remediation activities, and verifying closure of findings. Conduct risk management activities including risk assessments, risk analysis, and documentation of risk mitigation strategies. Conduct compliance reviews to ensure systems adhere to federal regulations, contract requirements, and applicable frameworks (e.g., NIST 800‑53, RMF). Assist in preparing and maintaining security documentation, including System Security Plans (SSPs), assessment reports, and risk analyses. Collaborate with technical teams across disciplines to validate security controls, provide compliance guidance, and ensure mission success. Participate in incident response and after‑action reviews, documenting lessons learned and compliance impacts. Develop and deliver compliance reports and metrics for leadership, federal stakeholders, and auditors. Contribute to security awareness and training initiatives to promote compliance across operational teams. Job‑Specific Minimum Requirements
Active Secret clearance required. Only US Citizens are considered; dual citizenship candidates are ineligible. 7+ years of experience in security compliance, vulnerability management, or related cybersecurity field. 4+ years of experience managing and tracking POA&Ms within government contracting environments. In‑depth knowledge of federal security frameworks, policies, and requirements (e.g., FISMA, NIST RMF). Experience with vulnerability management processes and tools. Experience conducting risk assessments and risk analysis. Ability to collaborate with technical teams to address findings and implement compliance solutions. Strong written and verbal communication skills with the ability to prepare compliance documentation and reports. Residency within a commutable distance for daily onsite work and readiness for recall/on‑call in a 24/7/365 environment. Preferred Skills and Qualifications
Certifications such as CISSP, CISM, CAP, or similar. Experience with federal government contracts, preferably under Homeland Security. Recent DHS experience in security compliance, risk management, or assessment activities. Familiarity with security tools including antivirus, vulnerability scanners, access control, endpoint protection, PKI certificate management, logging/SEIM, and DLP. EEO Statement
Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency
Maximum Salary: $120,000.00 Accommodations
Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process—including accessing job postings, completing assessments, or participating in interviews—please contact People Operations at
applicantaccommodations@maximus.com .
#J-18808-Ljbffr