Information Assurance Compliance Specialist I (Active Secret Req

DirectViz Solutions (DVS) is a dynamic and rapidly growing government contractor committed to delivering innovative IT solutions that address the mission-critical needs of our government clients. Through the expertise and dedication of our talented team, we provide cutting-edge technology services designed to achieve success and exceed expectations.

At DVS, we prioritize our employees as our greatest asset. We offer competitive compensation, comprehensive medical benefits, a 401(k) match, generous PTO accrual, professional development reimbursement, corporate-funded technology certifications, and robust employee recognition and appreciation programs.

Location: Philadelphia, PA

Work Arrangement: Onsite Clearance:

Active Secret (or higher) required

Overview

We are seeking a highly motivated Information Assurance Compliance Specialist I to support cybersecurity, system compliance, and risk management activities for critical IT systems. This entry-level to early-career role is ideal for professionals with a strong foundation in cybersecurity, Assessment & Authorization (A&A), and the Risk Management Framework (RMF). The position focuses on maintaining system security posture, developing compliance artifacts, and supporting secure operations of enterprise applications and databases.

Key Responsibilities

Cybersecurity & Compliance

• Support all phases of the Assessment & Authorization (A&A) lifecycle in accordance with DoD, DON, and NIST policies and standards.
• Assist in producing, reviewing, and maintaining RMF documentation, including system security plans, security assessment reports, POA&Ms, and related artifacts.
• Ensure systems meet requirements for confidentiality, integrity, and availability.
• Conduct risk and vulnerability assessments; document findings and non-compliance issues.
• Maintain compliance with applicable cybersecurity workforce qualifications per DoD and service-specific guidance.
• Track and update vulnerability scan data and system risks using appropriate tools.

System & Application Support

• Support application functionality, configuration integrity, updates, and quality assurance for assigned systems.
• Implement programming updates, upgrades, and performance improvements.
• Maintain formal backup, recovery, and software testing plans.
• Provide technical troubleshooting for applications, servers, and data flows.
• Perform regular data backups and support recovery after hardware/software incidents.
• Apply required software patches and maintain connections with associated databases and systems.

Database Administration

• Support administration, maintenance, and integrity of program-related databases.
• Provide structure updates, troubleshooting, and quality assurance for database changes.
• Conduct data audits using SQL queries to identify errors, duplicates, and data quality issues.
• Maintain data models, functional design documentation, and user training materials.
• Review and validate system-generated data files and prepare them for stakeholder submission as required.

RMF Lifecycle Activities

• Create, update, and maintain all documentation required to support Authorization to Operate (ATO) activities.
• Ensure compliance with all applicable controls, policies, and assessment procedures.
• Execute security testing, document results, and update system records.
• Provide recommendations to improve security posture based on assessment results.
• Support configuration control board activities and documentation maintenance.
• Collaborate with system owners, administrators, and cybersecurity personnel to verify fixes, mitigations, and residual risk decisions.

Required Qualifications

Education

One of the following is required:

• Bachelor's Degree in Computer Science, Information Technology, or a related technical field; or CNSSI 4011 certificate; or Completion of applicable military training (e.g., NEC 2791, IP Basic, or equivalent).

Experience

• 1-3 years of experience in cybersecurity, information assurance, or an A&A-related field.
• Experience supporting RMF processes, A&A documentation, or cybersecurity assessments.
• Familiarity with NIST SP 800-37, SP 800-53, and associated DoD/DON cybersecurity policy requirements.

Certifications (One required)

• CAP
• GSLC
• Security+ CE

Desired Skills

• Knowledge of database administration and SQL-based data analysis.
• Familiarity with software testing, backup/recovery planning, and application maintenance.
• Strong understanding of cybersecurity controls and assessment procedures.
• Ability to communicate technical requirements clearly and professionally.
• Experience with vulnerability scanning tools, security control validation, or STIGs is a plus.

If you thrive on solving complex problems and building meaningful connections, we'd love to hear from you. Join our team and make an impact today!

Physical and Mental Qualifications:

• Maintain focus and awareness throughout scheduled working hours.
• Perform tasks requiring prolonged periods of sitting or standing at a desk, utilizing a computer, mouse, and keyboard.
• Lift and move objects weighing up to 15 pounds as needed.
• Exhibit excellent verbal and written communication skills, with a strong command of the English language.
• Demonstrate the ability to work independently while also collaborating effectively as part of a team.
• Quickly learn and retain routine tasks and processes.
• Possess strong organizational skills, attention to detail, business correspondence proficiency, and self-management capabilities.
• Perform the essential functions of the role satisfactorily; reasonable accommodation will be provided for employees with disabilities upon request.
• Accept and adapt to additional responsibilities or changes to assigned duties as determined by DirectViz Solutions (DVS).

DirectViz Solutions, LLC (DVS) is an equal opportunity employer who prohibits discrimination and harassment against any employee or applicant for employment based on race, , sex (including pregnancy), age, gender identity, creed, religion, national origin, sexual orientation, marital status, genetic information, disability, political affiliation, protected veteran status, or any other status protected by federal, state or local law.

DVS has a zero-tolerance policy for harassment, threats, coercion, discrimination, and intimidation. Employees may file a complaint or exercise any right protected by Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, as amended, Section 4212 of the Vietnam Era Veterans Readjustment Assistance Act of 1974, or the Veterans Employment Opportunities Act of 1998.