Associate, Compliance Advisor

FULL TIMEmid
Legal & ComplianceCompliance
0 views0 saves0 applied

Quick Summary

Requirements Summary

System Security Plans (SSPs) Standard Operating Procedures (SOPs) Security policies and procedures Technical implementation doc

Technical Tools
Legal & ComplianceCompliance

Responsibilities

~1 min read

The Associate, Compliance Advisor supports Quzara's cybersecurity advisory practice by assisting federal and commercial clients with implementing, maintaining, and assessing security and compliance programs. This role supports security assessment and authorization (SA&A) activities, continuous monitoring, and governance initiatives across frameworks including FedRAMP, NIST RMF, FISMA, and DoD IL4/5. Works closely with engineering teams, compliance advisors, auditors, and client stakeholders, the Associate helps identify compliance gaps, validate security control implementation, coordinate remediation efforts, and develop the documentation required to support authorization and ongoing compliance. This role requires strong analytical abilities, excellent documentation skills, and the ability to communicate effectively with both technical and non-technical stakeholders.

  • Support Security Assessment & Authorization (SA&A) activities by coordinating and tracking Authorization to Operate (ATO) documentation and authorization packages.
  • Conduct compliance gap assessments and identify risks across customer cloud and hybrid environments.
  • Coordinate with engineering and technical teams to validate implementation of technical, operational, and management security controls.
  • Perform vulnerability and compliance assessments, analyze scan results, and provide recommendations for remediation.
  • Audit security controls to validate compliance with FedRAMP, NIST RMF, FISMA, DoD IL4/5, and other applicable governance requirements.
  • Manage and track Plans of Action & Milestones (POA&Ms), including remediation activities, status reporting, and risk reduction efforts.
  • Support Continuous Monitoring (ConMon) activities by reviewing security documentation, scan results, logs, and system evidence to validate ongoing compliance.
  • Develop, maintain, and update security documentation including:
    • System Security Plans (SSPs)
    • Standard Operating Procedures (SOPs)
    • Security policies and procedures
    • Technical implementation documentation
  • Interview subject matter experts to gather technical and operational information required for compliance documentation.
  • Coordinate onsite and remote security assessments with internal stakeholders, customers, and external auditors.
  • Develop compliance metrics, dashboards, and status reporting to measure program effectiveness and identify areas for improvement.
  • Support proposal development and technical responses to customer requests, ensuring alignment with applicable regulatory requirements.
  • Produce and maintain technical diagrams and architecture illustrations using Microsoft Visio or similar diagramming tools.
  • Clearly document client deliverables, ensuring legal, administrative, physical, and technical security controls are accurately represented within the organization's risk management framework.
  • Other duties as assigned

This is a full-time position. Standard business hours are Monday through Friday 8:30 AM to 5:30 PM. Additional time outside of these hours may be needed to complete the essential functions of the job.

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
  • Minimum 1–3 years of experience supporting cybersecurity compliance, governance, risk management, or security assessment activities within federal or regulated environments.
  • Working knowledge of:
    • FedRAMP
    • NIST SP 800-53
    • Risk Management Framework (RMF)
    • FISMA
    • DoD IL4/IL5 (preferred)
  • Experience supporting Security Assessment & Authorization (SA&A) or Authorization to Operate (ATO) activities is preferred.
  • Experience developing and maintaining security documentation including SSPs, SOPs, policies, procedures, and compliance artifacts.
  • Proficiency using vulnerability and compliance scanning tools such as Nessus, Tenable, or similar technologies.
  • Strong analytical and problem-solving skills with the ability to identify compliance risks and recommend remediation activities.
  • Excellent written and verbal communication skills with the ability to prepare professional documentation, reports, and technical deliverables.
  • Experience creating technical diagrams using Microsoft Visio or similar visualization tools is preferred.
  • Strong organizational skills with the ability to manage multiple priorities and deadlines within a remote team environment.
  • Demonstrated attention to detail and commitment to delivering accurate, audit-ready documentation.

Nice to Have

~1 min read
  • CompTIA Security+
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Other cybersecurity or compliance-related certifications are considered a plus.

The Company is an Equal Employment Opportunity (EEO) employer and does not discriminate based on race, color, religion, sex, sexual orientation, national origin, age, marital status, disability, veteran's status, or any other basis protected by applicable discrimination laws.

Location & Eligibility

Where is the job
Location terms not specified

Listing Details

Posted
July 15, 2026
First seen
July 15, 2026
Last seen
July 15, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
51%
Scored at
July 15, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

3 other jobs at CL 1e6d8f31 073f 48cd b324 b581c00084bf

View all →

Explore open roles at CL 1e6d8f31 073f 48cd b324 b581c00084bf.

Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

CL 1e6d8f31 073f 48cd b324 b581c00084bfAssociate, Compliance Advisor