Submitting more applications increases your chances of landing a job.

Here’s how busy the average job seeker was last month:

Opportunities viewed

Applications submitted

Keep exploring and applying to maximize your chances!

Looking for employers with a proven track record of hiring women?

Click here to explore opportunities now!
We Value Your Feedback

You are invited to participate in a survey designed to help researchers understand how best to match workers to the types of jobs they are searching for

Would You Be Likely to Participate?

If selected, we will contact you via email with further instructions and details about your participation.

You will receive a $7 payout for answering the survey.


User unblocked successfully
https://bayt.page.link/xLVpMkNvjLUmYFVk6
Back to the job results

Compliance Research Analyst

30+ days ago 2026/09/22
Other Business Support Services
Create a job alert for similar positions
Job alert turned off. You won’t receive updates for this search anymore.

Job description

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!


We are looking for a motivated and detail-oriented Compliance Research Analyst with 2–3 years of experience to join our organization. The ideal candidate has foundational to intermediate hands-on knowledge of Linux systems, scripting, and security frameworks, along with a growing interest in automation and AI-powered tooling. This role involves research, analysis, and scripting to support the development and maintenance of compliance policies, technical standards, and target configuration as per CIS/DISA benchmarks. We value curiosity, a willingness to learn, and a strong work ethic over perfection.


Key Responsibilities


Technical Research & Policy Support


  • Assist in analyzing and documenting compliance controls across platforms including Windows, Linux, macOS, and network devices.
  • Support the development of technical standards and compliance policies based on frameworks such as CIS, DISA STIG, NIST, PCI-DSS, ISO, and HIPAA.
  • Help map controls to industry frameworks (e.g., MITRE, NIST) and document control categories, criticality ratings, and remediation steps.

Linux Systems & Hardening


  • Analyze, interpret, and implement Linux security hardening and compliance configuration requirements across enterprise server environments.
  • Work with Linux systems across enterprise distributions including RHEL, Ubuntu, CentOS, and Debian.
  • Configure and manage disk partitioning, filesystems, mount options, and LVM layouts for secure system deployments.
  • Configure and maintain SELinux in enforcing mode, including policy configuration, contexts, and validation of confined services.
  • Harden Linux systems by configuring kernel parameters, disabling unnecessary kernel modules, and applying secure sysctl settings.
  • Configure and manage auditd services, audit rules, log retention policies, and audit log analysis to support security monitoring, traceability, and compliance reporting.
  • Implement secure authentication and access control mechanisms including SSH hardening, PAM configuration, sudo policies, password controls, account restrictions, and cron/at access management.
  • Work with critical Linux configuration files including /etc/passwd, /etc/shadow, sudoers, SSH configuration, PAM modules, fstab, systemd services, and audit configurations.
  • Write and maintain Bash/shell scripts to automate compliance checks, remediation activities, configuration validation, and reporting tasks.
  • Research security hardening updates, understand control intent and rationale, and document implementation approaches, exceptions, and remediation procedures for Linux systems.

Automation & AI-Assisted Tooling


  • Write and maintain automation scripts using Python, Shell scripting, and PowerShell to support compliance workflows.
  • Explore and apply LLM APIs (e.g., OpenAI, Anthropic Claude) to assist with research, content generation, and task automation.
  • Support the development of AI-assisted tools and basic agent workflows under guidance from senior team members.
  • Learn and apply prompt engineering techniques to interact effectively with AI models for compliance use cases.
  • Contribute to automation libraries and reusable script templates for compliance checks and remediation.

Content Development & Collaboration


  • Develop and maintain compliance scripts using PowerShell, Python, and shell scripting.
  • Update and improve existing content as benchmarks, policies, and customer requirements evolve.
  • Work with cross-functional teams (Development, QA, Infrastructure) to deliver quality output on time.
  • Support customers by helping identify and address compliance gaps with practical, well-documented solutions.

Required Technical Skills


Linux


  • 2+ years of hands-on experience including:
    • At least one RHEL-based distribution (RHEL / CentOS / Rocky / Alma)
    • At least one Debian-based distribution (Ubuntu / Debian)
  • Working knowledge of disk partitioning, filesystems, and mount management
  • Basic to intermediate understanding of SELinux modes and contexts (good to have)
  • Familiarity with kernel parameter tuning via sysctl
  • Experience with Linux auditing (auditd, audit rules, ausearch, aureport)
  • Exposure to Linux system hardening guidelines (CIS Benchmarks or DISA STIG)
  • Ability to read, write, and troubleshoot Bash/shell scripts
  • Comfort working with system files: /etc/passwd, sudoers, SSH config, PAM, cron, syslog

Automation & Scripting (Required)


  • Python scripting (preferred for automation)
    • Basic to intermediate proficiency
    • Ability to independently write functional automation scripts
    • Used in place of shell where more effective
  • PowerShell scripting for Windows-based or cross-platform tasks
  • Experience using AI-assisted development (“vibe coding”) tools such as GitHub Copilot, ChatGPT, Claude, Cursor, or similar tools to accelerate scripting, troubleshooting, research, and automation workflows
  • Familiarity with or curiosity about LLM APIs (OpenAI, Anthropic Claude, or similar) and prompt-driven automation workflows
  • Familiarity with or curiosity about LLM APIs (OpenAI, Anthropic Claude, or similar)

General Technical Skills


  • Foundational knowledge of Windows, Linux, macOS, networking, and database systems
  • Basic to intermediate proficiency in regular expressions (Regex)
  • Awareness of industry hardening standards (CIS, DISA STIG, Microsoft SCT)
  • Familiarity with security frameworks: NIST, ISO 27001/27002, PCI-DSS, GDPR, etc.
  • Basic understanding of the MITRE ATT&CK framework
  • Exposure to APIs and tools like Postman is a plus

Required Soft Skills


  • Strong written and verbal communication skills
  • Eager to learn, grow, and take on new challenges
  • Team player who can collaborate in a distributed team environment
  • Organized and attentive to detail with a commitment to quality
  • Ability to manage assigned tasks independently with minimal supervision

Preferred Qualities


  • Self-motivated with a genuine interest in security and compliance
  • Comfortable asking questions and learning from feedback
  • Adaptable to changing requirements and priorities
  • Interest in AI/ML trends and how they apply to security and automation
This job post has been translated by AI and may contain minor differences or errors.
You’ve reached the maximum limit of 15 job alerts. To create a new alert, please delete an existing one first.
Job alert created for this search. You’ll receive updates when new jobs match.
Are you sure you want to unapply?

You'll no longer be considered for this role and your application will be removed from the employer's inbox.