Address: Boston, MA 02108

Telephone: 901-207-8038

Email Address: smithassociates1725@gmail.com

Hours: Office Hours – 3:30 PM – 8:00 PM CST

The Gov Cloud Compliance Analyst supports regulatory compliance and audit readiness for our Gov Cloud environments. This role implements and validates controls. It manages evidence in Audit Board (system of record). In addition, it coordinates ATO/SA&A activities mapped to federal and state frameworks (NIST SP 800-53 Rev 5 — Moderate, FedRAMP, State RAMP, MARS-E where applicable). Internal Cannon Protocol mapping (ARC-AMPE) is also involved.

*********************************************************************************************
Position Title: Gov Cloud Compliance Analyst (Cloud Controls Audit)
ATTENTION: ” $TOP PAY “(Interviewing Now)
*********************************************************************************************

Location : Boston, MA
Salary : Competitive
Experience level: Mid-senior
Experience required: 5 Years
Education level: Bachelor’s degree
Job function: Information Technology
Industry: Insurance
Total position: 1
Visa sponsorship eligibility: No

Summary :

The Gov Cloud Compliance Analyst supports regulatory compliance and audit readiness for our Gov Cloud environments. This role implements and validates controls, manages evidence in Audit Board (system of record), and coordinates ATO/SA&A activities mapped to federal and state frameworks (NIST SP 800-53 Rev 5 — Moderate, FedRAMP, State RAMP, MARS-E where applicable) and internal Cannon Protocol mapping (ARC-AMPE).

This is a hybrid/ 100% remote-eligible role reporting to the Director of Regulatory Compliance Environments.

Key responsibilities (measurable)

– Own assigned control families and maintain control evidence in the Audit Board.
– Execute control assessment activities and perform internal validations at defined
cadence (quarterly or as required by framework).
– Map inherited and system-specific controls to canonical mappings. Update
control mapping artifacts within the Audit Board.
– Partner with engineering, platform, and risk teams to track ATO/SA&A
milestones. Maintain ATO readiness dashboard and escalate blockers within 48 hours.
– Prepare documentation packets and evidence bundles for external audits.
– Identify compliance gaps and propose prioritized remediation plans. Then track
remediation closure (target: close high/critical findings within 30 days or per SLA).
– Contribute to Power BI dashboards that visualize control health, evidence
SLAs, and audit cycles. Additionally, support monthly compliance reporting.
– Maintain procedures and update policies tied to assigned controls. Be sure to document
changes in the governance repository.

Required qualifications :

– Minimum 3 years of compliance, IT risk, or audit experience in regulated
cloud environments (AWS Gov Cloud, Azure Government, or equivalent).
– Working knowledge of NIST SP 800-53 Rev 5, FedRAMP, State RAMP is required.
Experience mapping to MARS-E/ ARC-AMPE is a plus.
– Practical experience with GRC platforms (Audit Board preferred). Familiarity with
evidence management processes is also important.
– Strong technical writing and stakeholder communication skills are needed.
– Bachelor’s degree in information security, Computer Science, Risk
Management, or equivalent experience is required.

Preferred qualifications :

– Experience supporting ATO or SA&A efforts and coordinating external
assessors.
– Certifications: CISA, CISSP, CRISC, or Security+.
– Experience with Power BI or advanced Excel for KPI tracking and reporting.
– Familiarity with ADO/IT ticketing or change management processes.

For consideration you must act now, send resume to
smithassociates1725@gmail.com. Sincerely,

Gerald Smith

*****************************************************************************************