Talent.com
Compliance Security and Microsoft Cloud Analyst
Compliance Security and Microsoft Cloud AnalystEccalon, LLC • Hanover, MD, US
No longer accepting applications
Compliance Security and Microsoft Cloud Analyst

Compliance Security and Microsoft Cloud Analyst

Eccalon, LLC • Hanover, MD, US
15 hours ago
Job type
  • Full-time
Job description

Compliance Security and Microsoft Cloud Analyst

Eccalon is seeking a Compliance Security and Microsoft Cloud Analyst position that will play a critical role in both Cyber Compliance Operations and Cloud Security Engineering. This is a long-term career opportunity ideal for individuals who want to grow both their compliance knowledge and hands-on Microsoft Cloud Security engineering expertise.

The selected candidate will help drive cybersecurity compliance initiatives aligned with Department of Defense (DoD) frameworks (NIST 800-53, NIST 800-171 / 172, FedRAMP and CMMC L1 / L2 / L3), while also designing, configuring, and implementing Microsoft Azure Government and M365 GCC High security controls across client environments.

This position offers the ability to advance technical engineering skills, earn high-level security certifications, and grow into a leadership track in cloud security and compliance operations.

Responsibilities

Cloud Security Engineering (Azure Gov and M365 GCC High)

  • Assist in designing, configuring, and implementing Microsoft Azure Government and M365 GCC High security controls.
  • Support Azure Gov resource hardening, including Virtual Machines, Key Vaults, Storage Accounts, Defender for Cloud, Sentinel, Azure Policies, and Conditional Access.
  • Assist with Microsoft 365 GCC High Security & Compliance Center configurations, including DLP, Sensitivity Labels, Insider Risk, and Compliance Manager setup for CMMC and NIST alignment.
  • Configure and monitor Azure Sentinel Workbooks, Cloud Security Posture Management (CSPM), Defender for Endpoint (Gov), and Defender for Identity integrations.
  • Conduct Microsoft Secure Score reviews and remediation within GCC High and Azure Gov environments.
  • Assist in developing automated security monitoring dashboards and reporting using Azure Monitor, Microsoft Sentinel GCC High.
  • Support Azure network security hardening, including NSGs, ASGs, Private Endpoints, and Firewall rules.
  • Help develop and document Zero Trust Architecture alignment using Microsoft Cloud-native tools.

Cyber Compliance Operations

  • Research, identify, and map NIST and DoD cybersecurity controls (NIST 800-53, 800-171 / 172, FedRAMP (M) and CMMC) to Microsoft Cloud implementations and On-premises environments.
  • Assist with System Security Plan (SSP), Policies, Procedures, and Plan of Action & Milestones (POA&M) documentation for client environments.
  • Support control gap analysis, evidence collection, and audit preparation for DoD contractor compliance.
  • Conduct security control validation testing (manual and automated), for both on-premises and cloud based systems.
  • Document and report on control effectiveness, remediation plans, and risk mitigation actions.
  • Assist with preparing security architecture diagrams showing how Microsoft Cloud services map to compliance controls.
  • Support client teams during external CMMC, NIST, or DFARS audits and assessments.
  • Help draft and revise Policies, Standards, and Procedures (PSPs) to align with DoD cybersecurity requirements.

    • Required Qualifications

  • Bachelor's in Cybersecurity, Cyber Defense or equivalencies.
  • Strong understanding of Microsoft Azure Government (IaaS / PaaS / SaaS) security configurations.
  • Hands-on experience with Microsoft 365 GCC High security and compliance solutions.
  • Familiar with Microsoft Defender XDR stack (Defender for Endpoint, Identity, Office 365, Cloud Apps) for GCC High.
  • Working knowledge of Azure AD / Entra ID security policies, Role-Based Access Control (RBAC), and Privileged Identity Management (PIM).
  • Experience with Azure Sentinel deployment and use case creation.
  • Familiarity with Azure Policy, Blueprints, and Resource Locks for governance and compliance.
  • Experience in NIST 800-53, 800-171, 800-172, FedRAMP (M) and CMMC L1 / L2 / L3 control frameworks.
  • Proficient in security documentation writing for Policies, Standards, System Security Plans, and POA&Ms.
  • Proficient in network security concepts, firewall rule sets, and enterprise network topology diagrams.
  • Critical Thinking and Problem Solving
  • Strong Verbal and Written Communication
  • Professional and Technical Writing
  • Collaboration and Teamwork
  • Multitasking and Task Prioritization
  • Adaptability and Initiative
  • Knowledge of Assessment and Audit Management Processes

    • Preferred Qualifications

  • Master's degree in information assurance and cyber security.
  • Strong knowledge of Microsoft Security Best Practices for Cloud (Azure Gov, M365 GCC High).
  • Ability to interpret DoD contract security clauses (DFARS, CMMC, NIST requirements) and apply them to cloud environments.
  • Familiarity with Microsoft Compliance Manager and Secure Score tools in GCC High.
  • Exposure to Defender for Cloud recommendations, regulatory compliance dashboards, and Microsoft Sentinel analytics rules.
  • Proficient in evaluating data protection (at rest, in transit, and in use) in both cloud and on-premises environments.
  • Ability to conduct technical research and compliance gap analysis, followed by Microsoft technology specific security remediation steps.

    • Certifications

  • Microsoft Certified : Azure Security Engineer Associate - AZ 500
  • Microsoft Certified : Cybersecurity Architect Expert - SC 100
  • Microsoft Certified : Information Protection and Compliance Administrator Associate - SC 401
  • Microsoft Cloud Administration (others) : - SC 900 or SC 200 or SC 300
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)

    • Behavioral Skills

  • Servant Leadership Mindset : Proactively supports the team and organizational mission
  • Detail-Oriented : Consistently delivers thorough and accurate work
  • Team-Oriented : Works collaboratively across departments and client teams
  • Self-Motivated : Able to work independently and seek guidance when needed
  • Organized and Decisive : Able to manage multiple priorities with efficiency
  • Interpersonal Effectiveness : Builds strong, positive, and professional relationships

    • This position offers a dual career track (Cloud Security Engineering + Compliance Operations).

    You will gain hands-on Microsoft Cloud Security Engineering expertise, DoD cyber compliance expertise, and management experience, with the opportunity to grow into an Enterprise Compliance & Cloud Security Team Lead role.

    Note : This description focuses on responsibilities, qualifications, and program expectations relevant to the role. Irrelevant boilerplate and external referrals have been removed for clarity.

    J-18808-Ljbffr

    Create a job alert for this search

    Security Compliance Analyst • Hanover, MD, US

    Related jobs
    Compliance and Risk Management Analyst - Washington DC

    Compliance and Risk Management Analyst - Washington DC

    Staffing • Washington, DC, US
    Full-time +1
    Compliance And Risk Management Analyst.Salary : DOE (Salary Plus Benefits).Interview : Phone (US Citizens / GC / GC-EAD / TN / E3 Preferred). No sponsorship available for this job, direct hire and NO 1099 or ...Show more
    Last updated: 16 days ago • Promoted
    Technical Compliance Analyst - TS CI Poly required to apply - Wash DC

    Technical Compliance Analyst - TS CI Poly required to apply - Wash DC

    Bow Wave LLC • Washington, DC, USA
    Full-time
    Quick Apply
    Monitors computer networks and systems for security issues, suspicious activities, and compliance with established standards. Assists in investigating security breaches or incidents and participates...Show more
    Last updated: 30+ days ago
    Insider Threat Information Systems Security – Senior Data Analyst

    Insider Threat Information Systems Security – Senior Data Analyst

    H4 Enterprises • Arlington, VA, USA
    Full-time
    Quick Apply
    H4 Enterprises are currently seeking the following : .Insider Threat Information Systems Security - Senior Data Analyst will be responsible for analyzing, detecting, and mitigating potential insider ...Show more
    Last updated: 30+ days ago
    Principal Industrial Security Analyst / CSSO

    Principal Industrial Security Analyst / CSSO

    Clearance Jobs • Baltimore, MD, US
    Full-time
    CSSO Position At Northrop Grumman.At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for genera...Show more
    Last updated: 5 days ago • Promoted
    Sr. Offensive Cyber Security Analyst

    Sr. Offensive Cyber Security Analyst

    T. Rowe Price • Owings Mills, Maryland, US
    Full-time
    Rowe Price, we identify and actively invest in opportunities to help people thrive in an evolving world.As a premier global asset management organization with more than 85 years of experience, we p...Show more
    Last updated: 16 days ago • Promoted
    Compliance Analyst

    Compliance Analyst

    LaunchTech • Washington, DC, US
    Full-time
    We are seeking a Compliance Analyst for a pivotal role within a Federal agency's IT modernization initiative, aimed at transforming IT Service Management (ITSM) through the adoption of ServiceNow's...Show more
    Last updated: 30+ days ago • Promoted
    Compliance Analyst

    Compliance Analyst

    Themis Insight • Fort George G Meade, MD, US
    Full-time
    Themis Insight solves difficult business, IT, and analytic problems by addressing the whole problem not just the symptoms using interdisciplinary approaches that are both practical and innovative...Show more
    Last updated: 13 days ago • Promoted
    Analyst, Compliance FCC - PAG

    Analyst, Compliance FCC - PAG

    TelevisaUnivision • Washington, DC, US
    Full-time
    TelevisaUnivision is the leading Spanish-language media company in the U.Hispanic Americans through television, digital, and streaming platforms. Our Political & Advocacy Group (PAG) partners with a...Show more
    Last updated: 8 days ago • Promoted
    Compliance Analyst Level V

    Compliance Analyst Level V

    Clearance Jobs • Washington, DC, US
    Permanent
    Solutions Through Innovative Technologies, Inc.STI-TEC) specializes in the delivery of professional business and information management services. STI-TEC offers government and commercial clients a c...Show more
    Last updated: 30+ days ago • Promoted
    Compliance / Documentation Analyst

    Compliance / Documentation Analyst

    TriTech Enterprise • Linthicum Heights, MD, US
    Full-time
    Compliance / Documentation Analyst.TriTech Enterprise Systems (TriTech) is seeking a Compliance / Documentation Analyst to support a Maryland State contract. The candidate will ensure operational tr...Show more
    Last updated: 17 days ago • Promoted
    Cloud Analyst

    Cloud Analyst

    SiloSmashers • Arlington, VA, USA
    Full-time
    Quick Apply
    This position is part of a proposal submission and is contingent upon contract award.Support the evaluation and implementation of cloud services and infrastructure. Analyze performance, cost, and se...Show more
    Last updated: 30+ days ago
    Compliance Analyst

    Compliance Analyst

    Maryland Staffing • Fort George G Meade, MD, US
    Full-time
    Themis Insight solves difficult business, IT, and analytic problems by addressing the whole problem not just the symptoms using interdisciplinary approaches that are both practical and innovative...Show more
    Last updated: 2 days ago • Promoted
    Information Security Analyst

    Information Security Analyst

    TradeJobsWorkForce • 22202 Arlington, VA, US
    Full-time
    Monitor their organization’s networks for security breaches and investigate a violation when one occurs Install and use software, such as firewalls and data encryption programs, to protect sensitiv...Show more
    Last updated: 30+ days ago • Promoted
    Cybersecurity Vulnerability Analyst

    Cybersecurity Vulnerability Analyst

    Node.Digital • Arlington, VA, US
    Full-time
    Quick Apply
    Cybersecurity Vulnerability Analyst.Must have an active Top Secret Security Clearance.Government customer to provide cybersecurity vulnerability analysis support to reduce the prevalence and impact...Show more
    Last updated: 30+ days ago
    Compliance Analyst II-536176

    Compliance Analyst II-536176

    Clearance Jobs • Washington, DC, US
    Permanent
    Job Opportunity At The Department Of Homeland Security.The United States Department of State, Bureau of Political-Military Affairs, Office of the Directorate of Defense Trade Controls (PM-DDTC) is ...Show more
    Last updated: 30+ days ago • Promoted
    SOC Security Analyst L3

    SOC Security Analyst L3

    BlueVoyant • Hybrid in College Park, Maryland, MD, US
    Full-time
    Quick Apply
    SOC Security Analyst L3 Location : .Hybrid in College Park, Maryland (1-2 days per week in office) Shift Requirement : BlueVoyant's U. Commercial SOC operates on a four days on, three days off sc...Show more
    Last updated: 22 days ago
    Senior Business Analyst Security Settlements and Platform Migration / Baltimore, MD-12 months Contr

    Senior Business Analyst Security Settlements and Platform Migration / Baltimore, MD-12 months Contr

    Staffing • Baltimore, MD, US
    Temporary
    Senior Business Analyst Security Settlements And Platform Migration.We are seeking a skilled Business Analyst with expertise in security settlements within Capital Markets to support the migration...Show more
    Last updated: 30+ days ago • Promoted
    Compliance / Documentation Analyst

    Compliance / Documentation Analyst

    Maryland Staffing • Linthicum Heights, MD, US
    Full-time
    Compliance / Documentation Analyst.TriTech Enterprise Systems (TriTech) is seeking a Compliance / Documentation Analyst to support a Maryland State contract. The candidate will ensure operational tr...Show more
    Last updated: 2 days ago • Promoted