Information Security Compliance Analyst - (NIST 800-53, POA&M, CAP Focus) - Fully REMOTE
Posted Today by RICEFW Technologies Inc
Negotiable
Undetermined
Remote
Remote or Columbia, South Carolina
Summary: The Information Security Compliance Analyst role focuses on ensuring compliance with information security policies and procedures, particularly in relation to NIST 800-53 standards. The position involves interviewing stakeholders, developing implementation plans, and assessing documentation for compliance. This is a fully remote position, although local candidates in South Carolina are preferred for occasional onsite meetings. The contract duration is 12 months with a possibility for extension.
Key Responsibilities:
- Interviewing business and technical owners to determine policies and procedures used for each agency process.
- Developing and tracking infosec implementation plan progress.
- Documenting information gathered during both interviews and document reviews to assist with developing formal processes and procedures.
- Assessing agency documentation to ensure adequate approaches are used to comply with controls.
Key Skills:
- 10+ Years of Experience in Information Security and Compliance.
- 2+ Years of Experience with security audits based on a standard control set as an auditor or responding information system security officer.
- Strong Working Knowledge of NIST 800-53 (2 Years of Experience).
- Prior Experience POA&M or CAP.
- Strong Communication Experience.
- Experience With Using A GRC Tool (Archer or Similar) (3 Years of Experience).
- Have completed an information security plan or system security plan notebook.
- Simultaneously manage multiple infosec work efforts.
- Knowledge of IRS 1075, HIPAA, CJIS, MARS-E and/or PCI-DSS.
- Government sector experience.
- Ability to identify, map and re-engineer business processes.
- Strong schedule management and resource planning skills.
- Ability to work at a high-volume and fast pace.
- Strong collaborator and strong ability to meet deadlines.
Salary (Rate): £80/hr
City: Columbia
Country: United States
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Duration of the Contract: 12 Months
Possibility for Extension: Yes
Work Location: Role is 100% Remote. Preference will be given to local candidates who can come to the office as needed for client and departmental meetings, trainings, and other onsite activities.
Candidate location: No South Carolina residency required. Open to nationwide candidates. All travel-related costs for onsite work will be the responsibility of the resource no matter the frequency of onsite work.
| Daily Duties / Responsibilities: Duties include, but are not limited to:
| |
| Required skills (must include years of experience, in order of importance)
| Preferred Skills (Rank in order of Importance):
and/or PCI-DSS.
|
| Additional Skills
| |
| Required Education:
Bachelor's Degree | Preferred Certifications:
|