Compliance & Security Analyst

Job description

Essential Duties and Responsibilities: - Architects and authors System Security Plans (SSPs), the "source of truth" for the client's security posture, detailing exactly how each NIST 800-171 control is implemented. - Develops and manages the Plan of Action and Milestones (POAM), tracking every deficiency and guiding the client’s IT team through remediation. - Drafts all formal security policies, ensuring they are not just "templates" but functional, defensible documents that reflect the client’s real-world operations. - Designs and facilitates annual Incident Response (IR) and Disaster Recovery (DR) tabletop drills. - Leads the Evidence Collection phase, verifying that the client’s logs and configurations meet the rigorous sufficiency standards of a C3PAO auditor. - Demonstrates and actively promotes an understanding and commitment to the mission of Logicalis through performing behaviors consistent with the organization's values. - Maintains a working knowledge of applicable Federal, State, and Local laws and regulations as well as policies and procedures of Logicalis in order to ensure adherence in a manner that reflects honest, ethical and professional behaviors. - Supports and c...