Security Compliance Engineer/Analyst
2 weeks ago
Job Type
Full-time
Description
The Amivero Team
Amivero's team of IT professionals delivers digital services that elevate the federal government, whether national security or improved government services. Our human-centered, data-driven approach is focused on truly understanding the environment and the challenge, and reimagining with our customer how outcomes can be achieved.
Our team of technologists leverage modern, agile methods to design and develop equitable, accessible, and innovative data and software services that impact hundreds of millions of people.
As a member of the Amivero team you will use your empathy for a customer's situation, your passion for service, your energy for solutioning, and your bias towards action to bring modernization to very important, mission-critical, and public service government IT systems.
Special Requirements
- US Citizenship Required to obtain Public Trust
- Bachelor Degree + 10years of experience
The Security Compliance Analyst is a critical oversight role focused on ensuring that Agile IT software development processes comply with NIST, FISMA, and FedRAMP standards. This position involves monitoring, analyzing, and reporting on the security practices and compliance of software products and their operations from a strategic level. The Security Compliance Analyst will ensure that automated testing and scanning within CI/CD (Continuous Integration/Continuous Deployment) delivery processes adhere to stringent security requirements and regulations through comprehensive review and analysis of DevOps teams deliverables.
What Your Day Might Include...
Regulatory Compliance Monitoring:
- Oversee and monitor the integration of NIST, FedRAMP, and FISMA compliance standards.
- Experience working within Agile development teams, from a hands-off perspective, ensuring compliance of software deliverables and associated operations to all required standards.
- Review documentation and processes to ensure compliance with these standards throughout the software development lifecycle.
- Conduct periodic audits of required standards, associated controls, and control items.
- Analyze security practices and compliance data to assess effectiveness and identify trends or recurring issues in Agile development projects.
- Prepare detailed reports on compliance status, audit findings, and recommendations for enhancing security and compliance practices.
- Present findings to senior management and provide strategic insights on maintaining compliance in a rapidly changing technology environment.
- Lead ATO, Risk Management, and other approval processes. Serve as the security and compliance expert when representing products within these processes.
- Develop and refine risk assessment methodologies to evaluate security risks associated with new software features and deployments.
- Provide guidance on mitigating risks identified during the compliance review processes.
- Collaborate with security engineers and IT teams to ensure risk mitigation strategies are effectively implemented.
- Assist in the development and updating of security policies and compliance standards to align with current regulations and best practices.
- Ensure that security compliance policies are communicated to and understood by all stakeholders, including Agile DevOps teams.
- Educational Initiatives and Training Support:
- Support the design and delivery of compliance and security training programs to raise awareness and knowledge across the organization.
- Act as a resource for Agile teams and IT staff by providing expert advice on compliance matters in an advisory capacity.
You'll Bring These Qualifications...
- US Citizenship Required to obtain Public Trust
- Bachelor's degree in Cybersecurity, Information Technology, or a related field; Master's degree preferred.
- Professional certifications relevant to compliance and security, such as CISSP, CISM, or specific to NIST, FedRAMP, and FISMA.
- Proven experience in a compliance role with a strong understanding of software development processes and security frameworks.
- Experience with Agile methodologies DevOps based CI/CD processes, with a focus on security and compliance implications.
- Strong analytical skills and the ability to work independently.
- Excellent analytical and strategic thinking skills.
- Strong communication and presentation skills, capable of conveying complex information in a clear manner.
- Detail-oriented with a high level of integrity and professionalism.
- Proactive in identifying potential compliance issues and developing solutions.
- Ability to manage multiple projects and responsibilities in a fast-paced environment
EOE/M/F/VET/DISABLED
All qualified applicants will receive consideration without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. Amivero complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
-
Sr. Cyber Security Engineer
1 week ago
Reston, United States GuidePoint Security Full timeGuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies,...
-
Sr. Cyber Security Engineer
1 month ago
Reston, United States Cyber Security Services Full timeAn active Top Secret / SCI clearance is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer What You'll Get To Do: As a Sr Cyber Engineer and assured, compliance, assessment, and solution (ACAS) SME on our team, you’ll be able to work individually or in a small integrated team, and lead a...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld Inc Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer) Job Location: Fairmont West Virginia 20190 Onsite Requirements: * SIEM * Security Sensors * ANY SOC experience. Job Description: * The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods. * This Detection...
-
Info Security Analyst IV
18 hours ago
Reston, United States Softworld, a Kelly Company Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer) Job Location: Fairmont West Virginia 20190 Onsite Requirements: SIEM Security Sensors ANY SOC experience. Job Description: The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods. This Detection Engineer...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld Inc Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer) Job Location: Fairmont West Virginia 20190 Onsite Requirements: SIEM Security Sensors ANY SOC experience. Job Description: The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods. This Detection...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld, a Kelly Company Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer)Job Location: Fairmont West Virginia 20190Onsite Requirements:SIEMSecurity SensorsANY SOC experience.Job Description:The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods.This Detection Engineer will...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld, a Kelly Company Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer)Job Location: Fairmont West Virginia 20190Onsite Requirements:SIEMSecurity SensorsANY SOC experience.Job Description:The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods.This Detection Engineer will...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld, a Kelly Company Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer)Job Location: Fairmont West Virginia 20190Onsite Requirements:SIEMSecurity SensorsANY SOC experience.Job Description:The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods.This Detection Engineer will...
-
Info Security Analyst IV
1 week ago
Reston, United States Softworld, Inc. Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer)Job Location: Fairmont West Virginia 20190Onsite Requirements:SIEMSecurity SensorsANY SOC experience.Job Description:The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods.This Detection Engineer will...
-
Info Security Analyst IV
6 days ago
reston, United States Softworld Inc Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer)Job Location: Fairmont West Virginia 20190Onsite Requirements:SIEMSecurity SensorsANY SOC experience.Job Description:The Cyber...
-
Information Security Analyst
1 day ago
Reston, Virginia, United States General Dynamics Information Technology Full timeReq ID: RQ173159Type of Requisition: RegularClearance Level Must Be Able to Obtain: NonePublic Trust/Other Required: SSBI (T5)Job Family: Information SecuritySkills:Information Security,Information Systems,Security EducationCertifications:CISA: Certified Information Systems Auditor - ISACAExperience:5 + years of related experience We are GDIT. As one of the...
-
Info Security Analyst IV
24 hours ago
Reston, VA, United States Softworld Inc Full timeJob Title: Info Security Analyst IV (Cyber Detection Engineer) Job Location: Fairmont West Virginia 20190 Onsite Requirements: SIEM Security Sensors ANY SOC experience. Job Description: The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection methods. This Detection...
-
SAP Security Analyst
1 month ago
Reston, United States Trillion Technology Solutions Full timeJob DescriptionJob DescriptionTrillion is seeking a dedicated, talented and detail-oriented SAP Security Analyst to join our teamOversees the development of information assurance solutions to IT clients, including supporting certification and accreditation activities. Develop security documentation, including security plans, configuration management plans,...
-
Security Assurance Senior Analyst
2 days ago
Reston, United States Qualtrics Full timeQualtrics Know what your customers and employees need, when they need it, and deliver it every time with powerful, AI driven Experience Management (XM) software. View company page At Qualtrics, we create software the world’s best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we...
-
SAP Information Assurance Engineer
1 month ago
Reston, United States Trillion Technology Solutions Full timeJob DescriptionJob DescriptionTrillion is seeking a dedicated, talented and detail-oriented SAP Information Assurance Engineer (Analyst) to join our teamAssists in providing information assurance solutions to IT clients, including supporting certification and accreditation activities.Ability to work effectively in a team environment, customer support...
-
SAP Information Assurance Engineer
7 days ago
Reston, United States Trillion Technology Solutions Full timeJob DescriptionJob DescriptionTrillion is seeking a dedicated, talented and detail-oriented SAP Information Assurance Engineer (Analyst) to join our teamAssists in providing information assurance solutions to IT clients, including supporting certification and accreditation activities.Ability to work effectively in a team environment, customer support...
-
SAP Security Analyst
1 day ago
Reston, Virginia, United States Kforce Inc Full timeRESPONSIBILITIES:Kforce has a client that is seeking an SAP Security Analyst in Reston, VA.Duties Include: Personnel Security: Manage SAP personnel security processes, including assessing eligibility for SAP access, preparing nomination packages, waivers, or letters of compelling need, maintaining SAP databases, and managing/reporting/tracking SAP access...
-
SAP Security Analyst
6 hours ago
Reston, United States Kforce Inc Full timeRESPONSIBILITIES:Kforce has a client that is seeking an SAP Security Analyst in Reston, VA.Duties Include: Personnel Security: Manage SAP personnel security processes, including assessing eligibility for SAP access, preparing nomination packages, waivers, or letters of compelling need, maintaining SAP databases, and managing/reporting/tracking SAP access...
-
Functional Analyst
1 month ago
Reston, United States SilverEdge Full timeOverview As a Functional Analyst, you'll directly impact defense missions by maintaining and evolving a mission-critical data and information system. You'll collaborate with developers, engineers, data scientists, and analysts to prototype and deploy new capabilities to support warfighter end users. This is an opportunity to grow your experience in scrum...
-
Cyber Security Analyst
1 month ago
Reston, United States QinetiQ Full timeCompany Overview We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fields of sensor science, signal processing, data fusion, artificial...
