Sr Analyst ISO Security Governance

The Security Governance Sr. Analyst will work directly with the Senior Director of Security Governance to develop and implement organizational security policies, standards, and procedures that align with Federal and DoD customer requirements to include FISMA, applicable

FAR / DFAR

Clauses, Executive Orders, OMB's, and applicable NIST frameworks. The primary role of the Sr. Analyst will be alignment of security policies with existing and prospective Federal and DoD customers' governance and compliance requirements.

Essential Duties and Responsibilities:

• Perform complex risk analyses and risk assessment.
• Establish and satisfy Information Assurance (IA) and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Support customers in the development and implementation of doctrine and policies.
• Advise information system owners on client/project security policies and requirements for systems.
• Keep abreast of emerging security technologies and make appropriate recommendations regarding the enhancement of the security posture of systems and their implementation.
• Provide recommendations on alignment of security policies with existing Federal and DoD customer requirements.
• Collaborate with the Enterprise (Shared Services) ISSO to ensure proper alignment of organizational governance with Federal and DoD customers.
• Collaborate with project ISSO's (existing contracts) and Business Development and Capture Teams to ensure proper alignment of organizational governance with existing and prospective Federal and DoD customers.
• Assist the Enterprise (Shared Services) ISSO with application of security policies to shared services supporting Federal and DoD customers.
• Recommend enhancements that align governance with Federal and DoD customers.
• Support the enhancement and on-going management of governance activities from a Federal perspective, including vendor assessments, annual enterprise risk assessments, enterprise risk registers, security awareness and training, and maintenance of a GRC. Minimum Requirements
• Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required.
• Bachelor's Degree in related field.
• 5-7 years of relevant professional experience required.
• Equivalent combination of education and experience considered in lieu of degree.
• Bachelor's degree in cybersecurity, computer science, information assurance, or related field
• 7+ of security governance development and management for a corporate organization supporting Federal and DoD customers.
• Certifications like CISSP, CISM, CISA, or GRC / audit or risk certifications desired.
• Experience supporting security governance for organizations using FedRAMP'd CSO's as it pertains to system-specific and hybrid controls.
• RMF and A&A experience desired
• Strong understanding of Federal requirements to include but not limited to applicable Executive Orders, FISMA, FIPS, CMMC, NIST 800-171, NIST 800-53, NIST 800-60, and

NIST 800-65.

• Experience with Federal and DoD GRC tools. (CFACTS, CSAM, eMASS, etc.)
• Experience mapping and cross walking policies, standards, and procedures to multiple security frameworks.
• Exercise judgement in selecting methods, techniques, and evaluation criteria for obtaining results.
• Network with key contacts outside own area of expertise.
• Develop solutions to a variety of complex problems.
• Work requires considerable judgment and initiative.
• Ability to communicate Federal language (NIST verbiage) in understandable business terms.
• Excellent interpersonal skills, presentation skills, and oral / written communication skills.
• Strong customer service abilities required.
• Ability to work collaboratively with a broad range of staff.
• Skilled in Microsoft Office software including Word, Excel, and PowerPoint; Smartsheet; and Lucid.
• Ability to perform comfortably in a fast-paced, deadline-oriented work environment.
• Ability to execute many complex tasks simultaneously and work as a team member as well as independently.

Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Minimum Salary $90,780 Maximum Salary $122,820