S

IT - SCDHHS - Security Analyst – Consultant

Sunshine Enterprise Usa
Full-time
On-site
Columbia, South Carolina, United States

Position: Security Analyst<\/span><\/b>
<\/p>

Location: Columbia, SC<\/span><\/b> <\/span>
<\/p>

Years of Exp: 10+Years<\/span><\/b>
<\/p>

Contract Type: C2C\/W2<\/span><\/b>
<\/p>

Duration: 12+ Months<\/span><\/b>
<\/p>

Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense.<\/span><\/b>
<\/p>

 <\/span>
<\/p>

Summary<\/span><\/b>
<\/p>

We are seeking an experienced Security Analyst \/ Senior ISSO to oversee and actively participate in the day\-to\-day security and compliance operations of complex information systems. The ideal candidate will lead the establishment, implementation, and enhancement of Information Systems Security and Compliance efforts based on State\/Agency Policy, Standards, and Regulatory Guidance such as FISMA, NIST, CMS MARS\-E, HIPAA, and other applicable frameworks.<\/span>
<\/p>

 <\/span>
<\/p>

Key Responsibilities<\/span><\/b>
<\/p>

·        <\/span><\/span><\/span>Serve as a senior cybersecurity consultant to leadership, business units, partners, and vendors.<\/span>
<\/p>

·        <\/span><\/span><\/span>Lead and manage security and compliance programs, including CMS MARS\-E, ARC\-AMPE, or other FISMA RMF\-compliant programs.<\/span>
<\/p>

·        <\/span><\/span><\/span>Develop and maintain System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related audit\/assessment activities.<\/span>
<\/p>

·        <\/span><\/span><\/span>Integrate RMF\/A&A tasks into the System Development Life Cycle (SDLC).<\/span>
<\/p>

·        <\/span><\/span><\/span>Perform architectural reviews, risk analysis, and security assessments for network design, information flow, system access, firewall rules, baseline configuration, and vulnerability management.<\/span>
<\/p>

·        <\/span><\/span><\/span>Audit internal systems and third\-party\/vendor systems for compliance and security controls.<\/span>
<\/p>

·        <\/span><\/span><\/span>Review and provide security input on contracts, data usage agreements, and related documentation.<\/span>
<\/p>

·        <\/span><\/span><\/span>Act as a primary point of contact for external audits and assessments.<\/span>
<\/p>

·        <\/span><\/span><\/span>Utilize tools such as Microsoft Office Suite, ticketing systems, eGRC platforms (e.g., Archer), Bizagi, Atlassian, and other relevant tools for documentation and reporting.<\/span>
<\/p>

·        <\/span><\/span><\/span>Collaborate with stakeholders to recommend and implement security and compliance risk mitigation measures.<\/span>
<\/p>

 <\/span>
<\/p>

Required Skills<\/span><\/b>
<\/p>

·        <\/span><\/span><\/span>Strong knowledge of FISMA, NIST, CMS MARS\-E, and HIPAA Security and Privacy requirements.<\/span>
<\/p>

·        <\/span><\/span><\/span>5+ years of experience working with or auditing Windows, Linux, Databases (Relational and Non\-Relational), Networking Infrastructure, and Web\-based Applications.<\/span>
<\/p>

·        <\/span><\/span><\/span>Experience in FISMA\-compliant programs.<\/span>
<\/p>

·        <\/span><\/span><\/span>Hands\-on experience with eGRC systems.<\/span>
<\/p>

·        <\/span><\/span><\/span>Health IT experience preferred.<\/span>
<\/p>

·        <\/span><\/span><\/span>Relevant Information Security certifications required (ISC², ISACA, SANS GIAC, or equivalent).<\/span>
<\/p>

·        <\/span><\/span><\/span>Strong communication and collaboration skills with both technical and non\-technical stakeholders.<\/span>
<\/p>

·        <\/span><\/span><\/span>Ability to multitask, prioritize, and work effectively in a results\-oriented environment.<\/span>
<\/p>

·        <\/span><\/span><\/span>Proficiency in Microsoft Office (Word, Excel, PowerPoint, Visio) with attention to detail and consistency in documentation.<\/span>
<\/p>

 <\/span><\/b>
<\/p>

Preferred Skills<\/span><\/b>
<\/p>

·        <\/span><\/span><\/span>BS degree in Computer Science or a related discipline, or 10+ years of relevant experience.<\/span>
<\/p>

·        <\/span><\/span><\/span>Prior ITIL experience in Information Security Management.<\/span>
<\/p>

·        <\/span><\/span><\/span>Experience with Cloud security and vendor management.<\/span>
<\/p>


<\/div><\/span>
<\/body> <\/html>"}}],"isMobile":false,"iframe":"true","jobType":"Full time","applyName":"Apply Now","zsoid":"666380550","FontFamily":"Verdana, Geneva, sans\-serif","jobOtherDetails":[{"fieldLabel":"Industry","uitype":2,"value":"IT Services"},{"fieldLabel":"Work Experience","uitype":2,"value":"5+ years"},{"fieldLabel":"City","uitype":1,"value":"Columbia"},{"fieldLabel":"State\/Province","uitype":1,"value":"South Carolina"},{"fieldLabel":"Zip\/Postal Code","uitype":1,"value":"29228"}],"headerName":"IT \- SCDHHS \- Security Analyst – Consultant","widgetId":"455829000000072311","isJobBoard":"false","userId":"455829000000202003","attachArr":[],"customTemplate":"3","isCandidateLoginEnabled":true,"jobId":"455829000020176023","FontSize":"12","googleIndexUrl":"https:\/\/seu\-usa.zohorecruit.com\/recruit\/ViewJob.na?digest=kJX@DGU@qbph5QFEcbCUnrUnTsxcyLboGtqeWtZG7hQ\-&embedsource=Google","location":"Columbia","embedsource":"CareerSite","indeedCallBackUrl":"https:\/\/recruit.zoho.com\/recruit\/JBApplyAuth.do","logoId":"6zqn0ecd06046e4b149a3a6a61797510edd99"}

Apply now
Share this job