Information Systems Security Officer

Job Summary

A company is looking for an Information Systems Security Officer I (ISSO-1).

Key Responsibilities

• Proactively identify system changes in HQR and QMARS and document them in a Security Impact Analysis (SIA)
• Serve as the "Source of Truth" for the system's security posture in CFACTS, managing control implementation statements and evidence
• Lead audit defense efforts by gathering necessary documentation to demonstrate effective controls to CMS auditors

Required Qualifications

• At least 4 years of experience establishing security controls
• Experience with web application development, unix/linux environments, or large scale systems
• Familiarity with infrastructure scripting languages such as Terraform or Ansible
• Experience implementing cloud-based solutions and understanding of AWS-native services
• Proven ability to author Security Impact Analyses and navigate the Assessment & Authorization (A&A) process