Information Security Analyst (Government/Public Health industry experience required)
Location: 100% onsite, Columbia, SC (local candidates)
Candidate must prove unrestricted authorization to work in the United States. We are unable to sponsor visas currently; C2C and H1B will not be given consideration
The Security Analyst will lead and enhance the day-to-day security and compliance of complex information systems in alignment with State/Agency policies, FISMA, NIST, CMS MARS-E, HIPAA, and other regulatory frameworks. The Senior ISSO will act as a cybersecurity consultant, advising leadership, business units, partners, and vendors.
Key Responsibilities:
- Lead security programs, focusing on RMF-compliant initiatives like CMS MARS-E.
- Develop and maintain System Security Plans, Privacy Impact Assessments, and related RMF artifacts.
- Manage security compliance in cloud services and vendor relationships.
- Perform architectural reviews, risk analysis, and vulnerability management.
- Conduct audits and third-party assessments, document findings, and provide recommendations.
Required Qualifications:
- Bachelor's degree or 10+ years of experience.
- 5+ years of experience in IT security with IBM zSeries, Windows, Linux, and networking.
- Expertise in FISMA-compliant programs and eGRC systems.
- Public Health IT experience.
- Information Security certifications (e.g., ISC(2), ISACA, SANS GIAC).
- ITIL experience in Information Security Management (preferred)