We're currently looking for an Information Security Compliance Analyst to join our team and play a critical
role in safeguarding our systems, data, and business operations. This role ensures adherence to relevant
regulatory, security and compliance standards, monitors compliance efforts, identifies areas for
improvements and supports internal and external audits. It also develops policies, translates technical
requirements into business-ready policies, and helps implement or coordinate necessary fixes.
Why Join Us?
Comprehensive Benefits – Eligible to enroll in medical, dental, vision at affordable rates
Supplemental Benefits – Eligible to enroll in life insurance, Short- & Long-Term Disability,
Critical Illness Insurance, Accident Insurance, Death and Dismemberment Insurance, and
Hospital Indemnity Insurance
Retirement Savings – 401(k) with company match
Paid Time Off – Holidays, sick time, vacation, and special "Happy Days” for life events
available day one
Employee Discounts – Save on company products
Career Growth – Opportunities for skill development and advancement
What You'll Do:
Develop, maintain, and communicate IT security policies and procedures, including data
handling, access control, and incident response protocols
Monitor adherence to security frameworks including NIST 800.171/53 (CMMC), ISO 27001,
TISAX, PCI-DSS, and other applicable standards
Conduct risk assessments to identify vulnerabilities, threats, and evaluate the likelihood and
impact of potential risks
Implement security controls such as firewalls, intrusion detection systems, and access control
mechanisms to protect systems and data
Monitor and audit security compliance, ensuring all controls functions effectively meet
regulatory and internal policy standards, including onsite travel for physical observations
Manage compliance-related issues by addressing and resolving identified violations or gaps
from audits or assessments
Audit ongoing security awareness and compliance training given to employees to ensure
adherence to compliance needs
Prepare for and participate in internal and external audits, ensuring the organization remains
compliant with industry standards and regulations
Stay current on changes in security frameworks (CMMC, TISAX, PCI-DSS, etc.) and proactively
adjust policies and practices to align with evolving requirements
Perform additional duties as assigned
What You Need:
Strong knowledge of security policies, risk management, and IT compliance practices
Familiarity with common security frameworks such as CMMC, TISAX, PCI-DSS, or similar
standards
Familiarity with GRC (governance/risk/compliance) tools like Apptega or Archer
Understanding of security controls, firewalls, intrusion detections systems, and access control
configurations
Ability to work independently with minimal supervision while staying proactive
Adaptability to perform effectively under pressure in a fast-paced, evolving environment
Strong problem-solving skills with the ability to troubleshoot unique technical issues
Professional demeanor with the ability to maintain a polished appearance
Excellent verbal and written communication skills
Strong commitment to maintaining confidentiality and data security
Eagerness to stay current with emerging technologies and participate in ongoing training
Associate degree in a related field or equivalent experience and certifications preferred
Ability to lift, carry, or move up to 10 pounds regularly, and up to 25 pounds occasionally
PRO113
Nesco Resource offers a comprehensive benefits package for our associates, which includes a MEC (Minimum Essential Coverage) plan that encompasses Medical, Vision, Dental, 401K, and EAP (Employee Assistance Program) services.
Nesco Resource provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
