Cybersecurity Compliance Specialist

Job Description

ECS is seeking a Cybersecurity Compliance Specialist to work remotely.

Overview

The Cybersecurity Compliance Specialist supports a federal energy sector cybersecurity program by ensuring alignment with federal standards, policies, and regulatory requirements. This role provides expertise in compliance oversight, documentation, and reporting for the Information Security Continuous Monitoring (ISCM) and DHS Continuous Diagnostics and Mitigation (CDM) programs. The position liaises with internal stakeholders and DHS CDM teams to ensure consistent compliance posture and effective program reporting.

Core Capabilities

• Lead compliance oversight for ISCM and CDM initiatives within a federal energy enterprise
• Ensure adherence to federal cybersecurity standards and requirements (FISMA, NIST 800-53, NIST 800-137, ISCM, CDM)
• Develop and maintain compliance documentation, policies, and procedures
• Support audit readiness, regulatory reporting, and continuous monitoring reviews
• Oversee metrics development and dashboards demonstrating compliance status and control effectiveness
• Liaise with DHS CDM and internal stakeholders to ensure program alignment
• Provide guidance and knowledge transfer on compliance frameworks and processes

Salary Range: $150,000 - $180,000

General Description of Benefits

Required Skills

• U.S. Citizenship
• Ability to obtain and maintain a DOE "L" clearance or DoD Secret clearance with reciprocity
• Strong knowledge of federal cybersecurity compliance frameworks (FISMA, NIST SP 800-53, NIST SP 800-137)
• Experience supporting ISCM or CDM compliance and reporting activities
• Proven ability to prepare compliance documentation, dashboards, and audit materials
• Strong communication and coordination skills with federal stakeholders
• Minimum 6-8 years of experience in cybersecurity compliance or governance roles
• 10+ years preferred with progressive responsibility in federal cybersecurity compliance

Desired Skills

• Familiarity with federal energy or critical infrastructure cybersecurity environments
• Experience with compliance automation and reporting tools (e.g., Archer, Splunk dashboards, GRC platforms)
• Knowledge of NIST RMF and related federal risk management frameworks
• Certifications: CISSP, CGRC (CAP), CISA, or CISM
• Experience supporting compliance within OT/ICS environments

#ECS1

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3500+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.