Security Compliance Specialist
$73k - $99k USD
🚀 Keep enterprise systems compliant, audit-ready, and mission-aligned across the Pacific.
SOSi is hiring a Security Compliance Specialist to drive RMF coordination, cybersecurity governance, and disciplined documentation at Joint Base Pearl Harbor-Hickam.
Essential Job Duties:
- Support the development, organization, and maintenance of cybersecurity compliance documentation in alignment with NIST, DoD, and organizational policies.
- Assist ISSOs and system owners by preparing, updating, and organizing RMF artifacts, including SSPs, SAPs, SARs, and POA&Ms.
- Maintain eMASS records by uploading evidence, updating control statuses, tracking workflow progress, and ensuring documentation accuracy.
- Coordinate evidence collection from technical teams, ensuring completeness, accuracy, and timely submission for audits and assessments.
- Track remediation activities, monitor POA&M items, and support reporting to leadership on compliance status and outstanding risks.
- Assist with internal control reviews by gathering data, documenting results, and preparing assessment materials.
- Review STIG checklists, vulnerability reports, and configuration documentation for completeness and compliance alignment.
- Support Configuration Management processes by documenting changes, updating inventories, and ensuring required artifacts are captured.
- Collaborate with defensive cyber and engineering teams to ensure compliance requirements are understood and integrated into operational workflows.
- Maintain compliance dashboards, metrics, and reporting tools to support leadership visibility and decision-making.
- Assist in the development and refinement of cybersecurity policies, procedures, and governance documentation.
- Support audit preparation activities, including scheduling, documentation packaging, and coordination with internal and external stakeholders.
Qualifications
Minimum Requirements:
- Active in-scope SECRET clearance.
- Bachelor’s degree in cybersecurity, IT, or related field plus 2–4 years of relevant experience.
- Meets DoD 8140.01 qualification requirements for cybersecurity workforce roles aligned to compliance and RMF support (e.g., OV SPP 002).
- Possession of a DoD 8140 approved certification relevant to compliance and RMF functions (e.g., Security+ CE, CySA+, CGRC/CAP, GSEC, SSCP).
- Familiarity with NIST SP 800 53, RMF, and DoD cybersecurity policies.
- Experience with eMASS or similar compliance management systems.
- Strong organizational and documentation skills with high attention to detail.
- Ability to coordinate across functional groups and communicate clearly with technical and non-technical stakeholders.
Preferred Qualifications:
- Active TS/SCI clearance.
- Experience supporting RMF packages or cybersecurity audits.
- Working knowledge of JIRA, Confluence, or similar workflow tools.
- Familiarity with ACAS/Tenable, STIGs, or SCAP results (reviewing, not implementing).
- Experience in policy development, governance documentation, or process improvement.
Additional Information
Work Environment:
- Working conditions are normal for an office environment.
- Fast paced, deadline-oriented environment.
- May require periods of non-traditional working hours including consecutive nights or weekends.
- Target Salary Range: $73,447 to $99,154.
Working at SOSi:
All interested individuals will receive consideration and will not be discriminated against for any reason.