Ascension LLC is seeking a Cybersecurity & Compliance Analyst to support mission-critical federal programs by strengthening cybersecurity posture, ensuring regulatory compliance, and reducing operational risk across enterprise IT environments. This role is essential to protecting government systems, data, and digital services by aligning security controls, policies, and practices with federal standards and agency-specific requirements.

The ideal candidate brings a blend of cybersecurity expertise, compliance knowledge, and analytical rigor, along with the ability to translate complex security requirements into practical, auditable solutions. This position is well suited for a professional who understands federal cybersecurity frameworks, thrives in structured yet evolving environments, and values contributing to public-sector missions that safeguard sensitive information and critical infrastructure.

Summary of the Contractor Role

The Cybersecurity & Compliance Analyst supports the client’s cybersecurity and risk management objectives by implementing, monitoring, and assessing compliance with federal security frameworks and policies. The role focuses on governance, risk, and compliance (GRC) activities, including documentation, control assessments, vulnerability tracking, audit support, and continuous monitoring.

The ideal candidate is detail-oriented, methodical, and self-driven, with a demonstrated ability to manage multiple priorities while maintaining accuracy and consistency. They are comfortable working with minimal supervision, proactively identifying gaps, and recommending corrective actions. This role requires strong collaboration skills to work effectively with technical teams, program leadership, and stakeholders across IT, security, and compliance functions.

The candidate is expected to support or resolve cybersecurity compliance challenges, prepare security artifacts, assist with audits and assessments, and help mature the client’s cybersecurity governance processes. Tools and processes commonly used include GRC platforms, vulnerability management tools, security assessment frameworks, and collaboration platforms such as Microsoft 365.

Position Day-to-Day Activities

• Analyze and interpret federal cybersecurity requirements and policies to support compliance efforts
• Develop, update, and maintain security documentation including SSPs, POA&Ms, risk assessments, and policies
• Support security control assessments aligned with NIST SP 800-53, NIST SP 800-171, and related frameworks
• Track vulnerabilities, findings, and remediation activities across systems and programs
• Coordinate with technical teams to validate security controls and remediation actions
• Assist with internal and external audits, assessments, and compliance reviews
• Monitor compliance status and report risks, trends, and gaps to program leadership
• Support continuous monitoring activities and cybersecurity governance processes
• Contribute to cybersecurity awareness, process improvement, and documentation standardization efforts