IT Compliance Analyst I

Moore & Van Allen PLLC, a dynamic and fast-growing full-service law firm of more than 400 attorneys and professionals, is seeking a detail-oriented Compliance Analyst I to join our Governance, Risk, and Compliance (GRC) team. This entry-level role supports compliance initiatives aligned with CMMC, NIST 800-171, and ISO 27001 frameworks, with a focus on helping organizations operating in regulated environments—including defense contractors—maintain strong compliance posture.

This role is ideal for someone early in their career who is passionate about cybersecurity, risk management, and audit readiness, and who enjoys collaborating across IT and business teams to ensure compliance accuracy and effectiveness.

 

What You’ll Do:

• Support client assessments by gathering, organizing, and validating compliance data
• Assist in completing compliance questionnaires aligned to CMMC, NIST 800-171, and related frameworks
• Perform basic internal control testing and document findings
• Review and validate compliance evidence for accuracy and completeness
• Maintain and update compliance documentation repositories
• Assist with audit readiness, including evidence collection and audit preparation
• Support vendor risk assessments and maintain tracking logs
• Compile compliance reports and metrics for internal and client use
• Assist with internal audits, including walkthroughs and remediation follow-up
• Collaborate with cross-functional teams to gather and verify compliance information

 

What We're Looking For: 

Required Qualifications 

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, Business, or a related field
• Foundational knowledge of CMMC, NIST 800-171, or ISO 27001
• Basic understanding of internal controls, risk management, or audit concepts
• Ability to review documentation and identify inconsistencies or gaps

Preferred Qualifications

• Internship or academic experience in compliance, cybersecurity, risk, or audit
• Familiarity with GRC tools (e.g., Archer, ServiceNow, OneTrust, ZenGRC)
• Exposure to regulated industries, defense contractors, or DFARS/CUI requirements
• Basic knowledge of security controls and policy frameworks
• Experience with Excel, SharePoint, or documentation management systems

 

Physical Requirements:

• The work is primarily sedentary.
• It requires the ability to communicate effectively using speech, vision, and hearing.
• The work requires the use of hands for simple grasping and fine manipulations.
• The work at times requires bending, squatting, and reaching, with the ability to lift, carry, push, or pull light weights.

 

Note: This is a temporary position that will based in our Huntersville, NC office location. Duration of the position - TBD, estimated 6-8 months. 

 

May need to occasionally work more than the standard 40 hours per week to accomplish essential duties of the position. Interested and qualified applicants should apply via our website at https://www.mvalaw.com/careers-working-at-mva. Equal Employment Opportunity Employer.

 

^{Applicant Disclosures}

^{Family Medical Leave Act Employer:  For more information, visit Employee Rights Under the Family and Medical Leave Act}

^{Employee Polygraph Protection Act:  For more information, visit Employee Polygraph Protection Act}

^{Employee Rights Under the Fair Labor Standards Act:  For more information, visit Employee Rights Under the Fair Labor Standards Act}