Similar Jobs
See allSenior Security Compliance Analyst
OneStudyTeam
US
GRC
ISO 27001
HIPAA
Information Security Analyst
DecisionPoint Corporation
US
FISMA
NIST
ISO 27001
Cybersecurity Lead
TekSynap
US
Security Architecture
Incident Response
Vulnerability Management
Security Analyst
Defense Unicorns
US
SIEM
CMMC
Google Workspace
Security Compliance Specialist
LiveKit
Security
GRC
HIPAA
Security Governance & Program Leadership:
- Serve as the system Security Manager / ISSO for My HealtheVet and act as the primary security point of contact for internal leadership and VA stakeholders
- Establish and maintain a comprehensive security program aligned with FISMA, NIST RMF, NIST SP 800-53 Rev. 5 (High baseline), HVA guidance, and VA cybersecurity policy (VA 6500 series)
- Lead ATO, reauthorization, and Continuous Monitoring (ConMon) activities, including assessment planning, evidence management, and package quality control
Risk Management & Compliance:
- Drive a risk-based security approach appropriate for a FISMA High / HVA system
- Identify, document, prioritize, and track security and privacy risks through POA&Ms , ensuring remediation actions are measurable and tracked to closure
- Perform and document system risk assessments, security impact analyses, and privacy-related assessments
Vulnerability Management & Continuous Diagnostics:
- Oversee vulnerability management activities including triage, prioritization, remediation coordination, validation, and reporting
- Integrate enterprise security initiatives (e.g., CDM-related reporting where applicable) into system risk tracking and POA&Ms
- Support secure configuration, hardening, and ongoing control effectiveness monitoring
Oddball
Oddball believes that the best products are built when companies understand and value the things they are working on. They value learning and growth and the ability to make a big impact at a small company.