Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers.
Additional Requirements as per contract/client:
- Candidates must be a US Citizen.
Essential Duties and Responsibilities:
- Develop Plan of Action and Milestones (POA&M) as necessary
- Manage exceptions to policies and procedures
Preferred Skills and Qualifications:
- At least one of the following certifications is required: CISSP, CISA or CISM.
- Experience with NIST 800-53 and HIPAA are required.
- Experience with Cloud providers, such as Azure and AWS.
- Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS.
- Smartsheet experience preferred.