Cyber Security Compliance Analyst

Location: Annapolis, MDPrimary Purpose Of Position

• The Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across Constellation IT and business teams to ensure compliance with cyber-specific laws, rules, and regulations applicable to the organization.
• The Cyber Security Compliance analyst is also a recognized Subject Matter Expert (SME) in the area of the Constellation Security Control Program (IT SCP) working directly with individuals/departments across all of Constellation (Corporate, Commercial, Generation, and Nuclear).

Primary Duties And Accountabilities

• Support and perform IT Cyber Security governance and oversight activities, including analysis of Cyber security policies, programs, and activities, developing and tracking performance metrics, reporting, and developing documentation.
• Develop metrics to convey the status and heath of applicable cyber-security compliance initiatives.
• Maintain comprehensive records for all concerns and/or findings during the compliance process; support issues tracking and drive corrective action/remediation efforts.
• Perform compliance activities including control testing, self-assessments and support engagements with internal and external auditors and support vendors.
• Recommend and implement change and process improvements to the cyber compliance areas to ensure sustained compliance and operational efficiencies.
• Develop/Maintain and Deliver assigned courses within the IT Cyber Security Constellation Security Control Learning Series
• Develop and review educational/training materials and job aids which support the Constellation Security Control Program (IT SCP)

Minimum Qualifications

• Bachelor's degree and typically 2 to 5 years related IT experience or 6 to 9 years equivalent combination of education and work experience.
• Experience with ServiceNow GRC
• Ability to solve problems using pre-defined procedures and guidelines.
• Communication skills Able to effectively communicate highly technical information in non-technical terminology (written and verbal)
• Understanding of Server and Workstation Operating Systems (Windows / Linux)
• Understanding of IP based switching, routing, and network environments (ex. Cisco)

As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or express, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws.