Cybersecurity FISMA MARS E Information Security Principles And Practices Analyst
Requirement id 152641
Job title Analyst
Job location in Columbia, SC
Skills required Cyber Security, FISMA, HIPAA Security Rule, MARS E Information Security Principles A
Open Date 27-Mar-2025
Close Date
Job type Contract
Duration 12 Months
Compensation DOE
Status requirement
Job interview type
Email Recruiter:coolsoft
Job Description Analyst: Cyber Security, FISMA, HIPAA Security Rule, MARS E Information Security Principles A
Job Title: SECURITY ANALYST - CONSULTANT (INFO SYS SECURITY OFFICER - ISSO)-11624-1
Start date : MAY 13, 2025
Submission deadline : 4/3/2025
Client Info : Department of Health and Human Services
Note:
:Important Notes Please read before submitting candidates :
1 - Resumes should be the work and words of the candidate in order to accurately reflect the candidates written communication skills.
2 - Candidates with resumes over 5 letter-sized pages will be considered after all other candidates, if at all. Shorter resumes which are tailored to show how the candidates experience directly maps to our needs will result in a greater chance of an interview. This is not a deal breaker if it is over, but it is preferred
Q) INTERVIEW PROCESS (phone, video or in-person, how many rounds of i/vs, etc.)
A) In-person or video for initial interview. Phone may be used for secondary interview(s)
Q) INTERVIEW AVAILABILITY: How soon can you schedule an interview (date / times)?
A) As soon as initial screening of qualified candidates is complete
Description :
SCOPE OF THE PROJECT:
The SCDHHS Office of Cybersecurity (OCS) is responsible the Security and Compliance of SCDHHS Information Systems and Data. OCS seeks an expert Senior ISSO to oversee (and actively participate in) the day-to-day security and compliance requirements of complex information system operating environments. A successful Senior ISSO will lead the establishment, implementation and/or enhancement of Information Systems Security and Compliance efforts based on State/Agency Policy/Standards and Regulatory Guidance such as FISMA, NIST, CMS MARS-E, HIPAA, etc.)
DAILY DUTIES / RESPONSIBILITIES:
The Senior ISSO will report to the Security Risk and Compliance Manager in OCS and operate as an experienced cybersecurity consultant to SCDHHS leadership, business units, business partners and vendors.
Security Program Experience:
Leadership experience with CMS MARS-E or other FISMA Risk Management Framework (RMF) compliant programs is strongly desired and will be given the highest weight. Experience should include well documented success in the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related interviews and audit/assessment activities to complete and verify these and other RMF/Assessment and Authorization (A&A) tasks and artifacts.
Experience with development and integration of RMF/A&A tasks and artifacts in RMF type roles such as; ISSO, Information Security Architect, Security Control Assessor, etc., into the System Development Life Cycle (SDLC) is ideal.
Experience in security as related to Cloud services and vendor management is considered desirable for this position.
Technical Knowledge:
Hands on experience with any or all of the following technologies would be considered a desirable for this position:
- RSA Archer
- Enterprise NoSQL Database
- IBM System 390/zSeries
- Linux and Windows servers
- Network Firewalls, Intrusion Prevention Systems (IPS), Switching and Routing Infrastructure
- Security Information and Event Management (SIEM) solutions
- Identity and Access Management (IAM) solutions
General Duties and Responsibilities:
- Perform detailed architectural reviews and risk analysis of security related requests in order to make sound decision making recommendations, such as:
a. Network Design and Information Flow
b. System and Data Access Models
c. Review Firewall Rule Requests (Ports, Protocols, and Services)
d. Baseline Configuration Management Deviation Requests
e. Vulnerability Management
Call Ext 100for more details. Please provide Requirement id: 152641 while calling.