Security Compliance Analyst

Three Sisters Federal is part of the Seneca Nation Group (SNG) portfolio of companies. SNGis Seneca Holdings' federal government contracting business that meets mission-critical needs of federal civilian, defense, and intelligence community customers. Our portfolio comprises multiple subsidiaries that participate in the Small Business Administration 8(a) program. To learn more about SNG, visitthe website and follow us onLinkedIn.

Our team of talented individuals is what makes us successful. To support our team, we provide a balanced mix of benefits and programs.Your total rewards package includes competitive pay, benefits, and perks, flexible work-life balance, professional development opportunities, and performance and recognition programs. We offer a comprehensive benefits package that includes medical, dental, vision, life, and disability, voluntary benefit programs (critical illness, hospital, and accident), health savings and flexible spending accounts, and retirement 401K plan. One of our fundamental principles is to offer competitive health and welfare benefits to our team members, providing coverage and care for you and your family. Full-time employees working at least 30 hours a week on a regular basis are eligible to participate in our benefits and paid leave programs. We pride ourselves on our collaborative work environment and culture, which embraces our mission of providing financial and non-financial benefits back to the members of the Seneca Nation.

Three Sisters Federalis seeking a Security Compliance Analyst. The Security Compliance Analyst supports IHS enterprise cybersecurity and compliance operations by monitoring, evaluating, and documenting adherence to federal security frameworks. The position plays a vital role in the implementation of Zero Trust architecture, vulnerability management, and risk assessment activities to ensure the confidentiality, integrity, and availability of critical IT systems.

Key Responsibilities
* Operate and maintain CDM security tools such as BigFix, Symantec, and Palo Alto Prisma.
* Conduct vulnerability scanning, analysis, and remediation tracking.
* Develop and maintain System Security Plans, risk assessments, and monitoring reports.
* Support audit responses and continuous compliance activities.

Basic Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or related field.
• Minimum 7 years of information security or compliance experience.
• Security+ CE certification required; CISSP or CISM preferred.
• Experience with DISA STIGs, RMF, and FISMA reporting.

Desired Skills:

• Vulnerability Management * BigFix * Splunk * Palo Alto Prisma * RMF * NIST 800-53 * SCAP * Continuous Monitoring * Zero Trust * Incident Response.