Skip to main content
Tallo logoTallo logo
Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Senior Cybersecurity Compliance Analyst

Job

OREGON EMPLOYMENT DEPARTMENT

Remote

Full-Time

Posted 3 days ago (Updated 2 days ago) • Actively hiring

Expires 7/24/2026

Review key factors to help you decide if the role fits your goals.
How is this calculated?
Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
65
out of 100
Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Job Listing ID:
4508475
Job Title:
Senior Cybersecurity Compliance Analyst
Application Deadline:
Open Until Filled
Job Location:
Myrtle Point
Date Posted:
06/10/2026
Hours Worked Per Week:
Not Provided
Shift:
Not Provided
Duration of Job:
Either Full or Part Time, more than 6 months SR You may contact this employer directly. (Obtain the contact information to print or add to your jobs.) Obtain Contact Information Job Summary ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work ASRC Federal is looking for detail-oriented and motivated Senior Cybersecurity Compliance Analyst to join our team in a government contracting (GovCon) environment. This is a full-time remote position with occasional on-site support (Beltsville, MD or Reston, VA). The Senior Cybersecurity Compliance Analyst is responsible for leading, managing, and executing compliance activities aligned to CMMC Level 2, NIST
SP 800-171, NIST SP
800-161, and
NIST SP 800-53.
This role will support enterprise cybersecurity, audit readiness, risk assessments, POA& M management, continuous monitoring, and the implementation of required security controls across systems, vendors, and business units. The ideal candidate will bring deep expertise in federal cybersecurity frameworks, strong analytical skills, and the ability to collaborate with technical and non-technical stakeholders to ensure robust compliance. Key Responsibilities CMMC Level 2
Compliance:
Lead the organization's readiness efforts toward achieving and maintaining CMMC Level 2 certification. Perform gap assessments, evidence collection, control validation, and
SSP/POA& M
development. Coordinate with internal engineering teams and external assessors during CMMC audits.
NIST SP 800-171
Oversee compliance with DFARS 252.204-7012 and
NIST 800-171
requirements for protecting Controlled Unclassified Information (CUI). Maintain and update System Security Plans (SSPs) and associated security documentation. Manage risk assessments, incident response requirements, and continuous monitoring activities.
NIST SP 800-161
(Supply Chain Risk Management): Implement and monitor Cybersecurity Supply Chain Risk Management (C-SCRM) requirements. Assess vendor cybersecurity posture, conduct supplier assessments, and support acquisition security requirements. Develop processes to track, evaluate, and mitigate supply chain-related risks.
NIST SP 800-53
Support enterprise-level compliance with
NIST 800-53
security and privacy controls. Assist in RMF activities including categorization, control selection, control assessments, and continuous monitoring. Work with system owners to remediate findings and ensure controls are implemented effectively. General Responsibilities Collaborate with engineering, IT, procurement, legal, and executive teams to ensure compliance alignment across the organization. Prepare compliance reports, dashboards, and metrics for leadership. Lead internal audits and coordinate external audits. Serve as a subject matter expert on cybersecurity compliance frameworks and best practices. Improve and mature enterprise cybersecurity governance processes, policies, and procedures. Required Qualifications Bachelor's degree in cybersecurity, information systems, or related field (or equivalent experience). 7+ years of relevant cybersecurity compliance or risk management experience. 5+ years of experience with a Master's degree in Cybersecurity.
Hands-on experience implementing:
CMMC Level 2 controls, NIST
SP 800-171, NIST SP 800-161, NIST SP 800-53.
Strong understanding of Risk Management Framework (RMF). Experience preparing SSPs, PO... Information Security Analysts Access our Statewide and Regional occupation report for more information about wages, employment outlooks, skills, training programs, related occupations, and more. Compensation Not Provided Job Requirements
Experience Required:
See Job Summary
Education Required:
None
Minimum Age:
N/A