IT - SCDHHS - Security Analyst – Consultant at SUNSHINE ENTERPRISE USA LLC

Columbia, South Carolina, United States -

Full Time

Start Date

Immediate

Expiry Date

27 Feb, 26

Salary

0.0

Posted On

29 Nov, 25

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information Systems Security Officer, Cybersecurity Consulting, System Security Plans, Privacy Impact Assessments, Interconnection Security Agreements, Risk Management Framework, Security Assessments, Architectural Reviews, Vulnerability Management, Audit and Assessment, Contract Review, Collaboration, IBM System 390, Windows, Linux, Health IT

Industry

Wholesale

Description

Position: Security Analyst – Consultant (Information Systems Security Officer – ISSO) Location: Columbia, SC Years of Exp: 10+Years Contract Type: C2C/W2 Duration: 12+ Months Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense. Summary We are seeking an experienced Senior ISSO / Security Analyst to oversee and actively participate in the day-to-day security and compliance requirements of complex information systems. The successful candidate will lead the implementation and enhancement of information systems security and compliance efforts based on industry standards and regulatory guidance such as FISMA, NIST, CMS MARS-E, and HIPAA. Key Responsibilities · Serve as a cybersecurity consultant to leadership, business units, partners, and vendors. · Lead the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and other assessment and authorization artifacts. · Integrate RMF/A&A tasks into the System Development Life Cycle (SDLC) as part of roles such as ISSO, Information Security Architect, or Security Control Assessor. · Perform security assessments for cloud services and vendor systems. · Conduct detailed architectural reviews and risk analysis for network design, system/data access, firewall rules, vulnerability management, and baseline deviations. · Audit and assess internal systems and third-party partners’ information security controls. · Review contracts, business associate agreements, data usage/sharing agreements, and other security-related documents. · Act as primary point of contact for third-party audits and assessments. · Collaborate with multiple teams to provide security and compliance recommendations. Required Skills 5+ years of IT experience with IBM System 390/zSeries, Windows, Linux, databases (relational and non-relational), networking infrastructure, and web applications. Prior experience in FISMA-compliant programs. Experience with eGRC systems. Health IT experience. Certifications: ISC(2), ISACA, SANS GIAC, or equivalent required. Strong knowledge of FISMA, NIST, CMS MARS-E, and HIPAA Security/Privacy. Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio). Ability to work independently and collaboratively, manage multiple priorities, and engage diverse technical and non-technical audiences. Preferred Skills · BS degree in Computer Science or a related discipline, or 10+ years of relevant experience. · Prior ITIL experience in Information Security Management. · Hands-on experience with eGRC tools and security management frameworks. Requirements

Responsibilities

The successful candidate will oversee and actively participate in the day-to-day security and compliance requirements of complex information systems. They will lead the implementation and enhancement of information systems security and compliance efforts based on industry standards and regulatory guidance.