Senior Federal Security Compliance Analyst Position Available In Fulton, Georgia

Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you. We are seeking a motivated and detail-oriented individual to join our team as a Senior Federal Security Compliance Analyst. While the primary focus will be ensuring compliance with the Federal Information Security Management Act (FISMA), experience with other federal frameworks such as Fed

RAMP, CMMC, NIST SP

800-53, and

NIST SP 800-171

is highly valued. The successful candidate will be responsible for driving the security and compliance of our systems and data in accordance with various federal requirements. You will serve as a key point of contact for federal compliance matters, with a primary focus on FISMA. You will work with internal and external stakeholders to communicate compliance mandates, maintain compliance against published standards, and support the overall compliance program to reduce compliance load and streamline program activities. Equifax has a hybrid work schedule that allows for 2 days of remote work (Monday and Friday), with 3 days onsite (Tuesday, Wednesday, Thursday) every week. This role will work the required onsite days at our Equifax office in Alpharetta, Saint Louis, or Reston. This position does not offer immigration sponsorship (current or future) including

F-1 STEM OPT

extension support. This is a direct-hire role and it is not open to C2C or third-party vendors. What you’ll do

Manage Federal Compliance Programs:

Assist with the management and execution of Federal Compliance Programs, with a primary emphasis on FISMA. Ensure compliance with customer requirements (particularly FISMA), relevant NIST standards (including

SP 800-53

Rev 5 and

SP 800-171

), internal security controls, and policies. Support activities related to FedRAMP and CMMC as needed. Serve as a primary point of contact for FISMA-related matters, collaborating with cross-functional teams, while supporting broader federal compliance inquiries.

Assessments:

Coordinate and conduct readiness assessments, pre-assessments, and formal assessments (e.g., FISMA, potentially supporting FedRAMP or CMMC readiness) with internal and external stakeholders to ensure compliance with established guidelines.

Documentation:

Develop, maintain, and assess documentation for federal compliance frameworks (primarily FISMA Rev 5, but also including

NIST SP 800-171

requirements and potentially supporting FedRAMP or CMMC artifacts), including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), Security Assessment Plans (SAPs), evidence templates, and other relevant artifacts.

Methodology & Process Improvement:

Evaluate and enhance audit and compliance methodologies and processes for greater effectiveness and efficiency across federal compliance programs (FISMA, NIST SP 800-53/171, etc.).

Communication & Reporting:

Provide regular updates and status reports on federal compliance activities (primarily FISMA) to key stakeholders, fostering transparency and communication. Utilize strong communication skills to advise organizational leaders on federal compliance topics (FISMA, NIST, Fed

RAMP, CMMC

), associated risks, and remediation strategies. What experience you need

Education:

Bachelor’s Degree in Cyber/Information Systems/Information Security/or equivalent discipline or equivalent experience.

Experience:

Minimum of 5 years of experience in regulatory compliance, consulting, or cyber security working with federal compliance regulations, demonstrating deep expertise in FISMA and

NIST SP 800-53. FISMA

Expertise:

Demonstrated experience with FISMA compliance, including:

Project & Program Management:

Exceptional project management abilities, including planning, organizing, and executing tasks related to federal compliance initiatives.

Analytical & Critical Thinking:

Strong analytical and critical-thinking skills to identify and address compliance gaps and security risks across various frameworks. Developing and maintaining FISMA-related documentation – SSPs, SAPs, POA&Ms, evidence templates and artifacts for

NIST SP 800-53

(Rev 4 and Rev 5), for 3PAO assessments.

Security & IT Knowledge:

Familiar with Information Security principles, knowledge of IT processes (e.g., SDLC, Incident Management, Risk Management, Network and System Administration), and knowledge of IT platforms, web, middleware, cloud services (IaaS, PaaS, SaaS), database, operating systems, infrastructure, encryption, routers, firewalls, virtualization, tokenization. Proven ability to effectively collaborate with cross-functional, cross-organizational teams to secure commitments on deliverables and ensure resolution of blocking issues. What could set you apart

Direct Framework Experience:

Proven hands-on experience implementing, managing, or assessing systems against FedRAMP or CMMC requirements.

Government Experience:

Possess experience working directly with US government agencies or supporting federal audits for government clients. 3

PAO Assessment Experience:

Have experience working with or as a 3PAO (Third-Party Assessment Organization) conducting FISMA, FedRAMP, or CMMC assessments.

Broad Compliance Knowledge:

Demonstrate experience with other compliance frameworks beyond federal, such as PCI DSS and SOC 2, showcasing a well-rounded understanding of security and compliance landscapes.

Effective Communication:

Exhibit strong presentation and public speaking skills, enabling clear and persuasive communication of complex security concepts to diverse audiences and ability to translate complex technical information.

Collaborative Leadership:

Show a proven ability to build consensus and drive collaboration across diverse teams, fostering a cohesive and productive environment.

Continuous Improvement Mindset:

Possess a passion for continuous improvement and innovation in audit and compliance methodologies, demonstrating a commitment to enhancing efficiency and effectiveness. #LI-Hybrid #LI-KD1 We offer comprehensive compensation and healthcare packages, 401k matching, paid time off, and organizational growth potential through our online learning platform with guided career tracks. Are you ready to power your possible? Apply today, and get started on a path toward an exciting new career at Equifax, where you can make a difference!

Primary Location:

USA-Atlanta-One-Atlantic-Center USA-Atlanta JV White, USA-St. Louis-Clayton, USA-St. Louis-Lackland, USA Washington-DC (Reston VA)

Function:

Function –

Security Governance and Compliance Schedule:

Full time At Equifax, we believe knowledge drives progress. As a global data, analytics and technology company, we play an essential role in the global economy by helping employers, employees, financial institutions and government agencies make critical decisions with greater confidence. We work to help create seamless and positive experiences during life’s pivotal moments: applying for jobs or a mortgage, financing an education or buying a car. Our impact is real and to accomplish our goals we focus on nurturing our people for career advancement and their learning and development, supporting our next generation of leaders, maintaining an inclusive and diverse work environment, and regularly engaging and recognizing our employees. Regardless of location or role, the individual and collective work of our employees makes a difference and we are looking for talented team players to join us as we help people live their financial best. Equifax is an Equal Opportunity employer, and qualified applicants will receive consideration for employment without regard to race, color, religion, ancestry, age, sex/gender, sexual orientation, gender identity or expression, service in the Armed Forces, protected veteran status, national origin, physical or mental disability, genetic information, citizenship status or any other status protected by law. For US Applicants If you’d like more information on your EEO rights under the law, please view our EEO is the Law Declarations, and Nondiscrimination Provision. If you need a reasonable accommodation to assist with your job search or applicant for employment, please contact us by sending an email to GTA@equifax.com. In your email, please include a description of the specific accommodation you are requesting and a description of the position for which you are applying. Equifax participates in E-Verify and Right to Work (English and Spanish).