Cyber Security Audit & Compliance Specialist
About the job Conduct and oversee cybersecurity audits and assessments in alignment with Risk Management Framework (RMF), FISMA, NIST 800-53, and DHS 4300A guidelines.Maintain and update system security documentation, including Authorization to Operate (ATO) and accreditation artifacts.Validate and ensure implementation of security controls across various systems (web applications, databases, virtual/cloud infrastructure).Manage compliance efforts and prepare for external inspections, remediating identified vulnerabilities and noncompliant findings.Monitor and operate Security Information and Event Management (SIEM) systems to detect anomalies and track cybersecurity incidents.Develop and enforce cybersecurity policies, procedures, standard operating procedures (SOPs), and lifecycle documentation.Support development and operations teams in integrating security controls within Agile DevSecOps and CI/CD pipelines.Serve as a primary liaison with internal stakeholders, external auditors, and federal oversight bodies regarding cybersecurity compliance.Analyze audit logs, incident reports, and configuration changes to identify and address potential security violations.Provide security education, awareness, and training to technical teams, supporting a culture of secure development practices.Utilize vulnerability scanning tools and Governance, Risk, and Compliance (GRC) platforms to track, report, and remediate security issues.Perform other related duties as assigned by management. Apply tot his job