Cybersecurity Compliance Support Analyst

Location: Remote

Type: 6-month Contract-to-Hire

Pay: $25 - $45/hr

Position Summary:

RSI Security is a leader in cybersecurity services, committed to providing secure and innovative solutions to our clients. We believe in fostering a culture of compliance and security to protect our clients' data and maintain their trust.

The Cybersecurity Compliance Support Analyst at RSI Security will play a pivotal role in supporting our Service Delivery team with their experience in the regulated research space, specifically CMMC, that comes from a technical background with a focus on risk and compliance. The work performed will primarily focus on system security plans, risk assessments, and performing various operational tasks such as customer/project onboarding and offboarding. To be successful in this role, you will be required to understand CMMC and the various controls in order to effectively perform assessments and properly maintain/improve on the security plans.

Hard Requirements:

• Must have/come from a CMMC background
• Must reside and operate in the United States
• Must be a US Citizen due to the sensitive nature of this role
• Must have the ability to travel up to 10% of the time

Roles & Responsibilities:

1. Compliance Monitoring and Reporting: Track and report on the organization’s adherence to cybersecurity regulations and standards, such as GDPR, HIPAA, ISO 27001, or NIST frameworks.
2. Risk Assessment: Conduct risk assessments and vulnerability analyses to identify potential security threats and compliance issues.
3. Policy Development and Implementation: Help develop, implement, and maintain cybersecurity policies, procedures, and controls to mitigate risks and ensure compliance.
4. Audit Preparation and Support: Prepare for internal and external audits by gathering necessary documentation, conducting pre-audit assessments, and ensuring that all compliance requirements are met.
5. Training and Awareness: Develop and deliver training programs to educate employees on cybersecurity best practices and compliance requirements.
6. Incident Response: Assist in the investigation and resolution of security incidents, ensuring that appropriate measures are taken to prevent future occurrences.
7. Documentation and Reporting: Maintain detailed records of compliance activities, incidents, and remediation efforts, and produce regular reports for management and regulatory bodies.

Qualifications:

• Knowledge of Cybersecurity Standards and Regulations: Familiarity with relevant standards and regulations, such as GDPR, CCPA, HIPAA, PCI-DSS, ISO 27001, NIST, etc.
• Analytical Skills: Ability to analyze complex security issues and assess the impact of various compliance requirements.
• Communication Skills: Strong verbal and written communication skills to effectively convey complex information to non-technical stakeholders.
• Attention to Detail: Precision in monitoring compliance and documenting findings.
• Problem-Solving Skills: Ability to identify and resolve compliance issues and security vulnerabilities.
• Certifications: Relevant certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Data Privacy Solutions Engineer (CDPSE) are often beneficial.
• Local to San Diego is preferred. 

Benefits: