The Senior Information System Security Officer (ISSO) Consultant role involves leading security, risk, and compliance activities for large-scale information systems. The consultant will implement and maintain security and compliance programs aligned with regulatory standards, advise stakeholders on cybersecurity risk management, and serve as a primary point of contact for audits and assessments.
Location:Columbia, South Carolina, United States\nWashington, District of Columbia, United States
Responsibilities:
- Lead and support security and compliance initiatives aligned with FISMA, NIST, CMS MARS-E, and HIPAA.
- Develop, maintain, and review RMF/A&A artifacts including SSPs, PIAs, ISAs, and related documentation.
- Integrate security controls and compliance activities into the System Development Life Cycle (SDLC).
- Perform security architecture reviews, risk assessments, and vulnerability evaluations.
- Review firewall rules, access models, data flows, and configuration deviation requests.
- Conduct audits and assessments of internal systems and third-party vendors.
- Serve as primary point of contact for third-party audits and assessments.
- Review contracts and data-sharing agreements for security and compliance requirements.
- Provide risk mitigation recommendations to leadership and stakeholders.
- Document findings and reports using standard enterprise tools.
Required Skills & Certifications:
- 5+ years of IT security experience working with or auditing Windows and Linux systems, databases, networking, and web-based applications.
- Prior experience working within a FISMA-compliant program.
- Experience with eGRC platforms.
- Strong working knowledge of NIST, FISMA, HIPAA, and CMS MARS-E.
- Ability to work independently and collaboratively in a consulting environment.
- One or more active security certifications such as ISC , ISACA, or SANS GIAC.
- Bachelor's degree in a related field or equivalent professional experience.
Preferred Skills & Certifications:
- Experience with cloud security and vendor risk management.
- Familiarity with SIEM, IAM, firewalls, and intrusion prevention systems.
- ITIL experience related to Information Security Management.
- Prior healthcare or public-sector IT experience.
Special Considerations:
- In-person interviews are required.
Scheduling:
- Not specified.
JOIN OUR HISTORIC TOURS OF AMERICA FAMILY at The Old Savannah Distillery Position Purpose The Storyteller presents tastings, drinks, cocktail, or food demonstrations to guests.The Storyteller plays a crucial role in ensuring that Old Savannah Distillery (OSD) standards...
...or replace any type of commercial, industrial, and institutional roofing. We employ the most experienced professional roofers and sheet metal craftsmen. Our mission is to provide the highest quality of customer service, safety, integrity, and professionalism. We are...
...grading or parent conferences-just come and teach with us!* Part-time teaching position* Reading and or Math K-12* Flexible schedule... ...instruction only* Great environment for current or retired teachers or recent graduates* Great experience helping students achieve...
What will you do? The laborer position is an entry level position that should progress to the other basic foundry jobs based on bidding, training and qualification. Will be responsible for learning and fulfilling the needs of the production departments in various positions...
The Training Specialist II supports the development, delivery, and evaluation of technical and logistics training programs for U.S. Navy personnel. This mid-level role involves working closely with subject matter experts (SMEs), instructional designers, and Navy stakeholders...