Analyst - ISSO - Maximus
Dover, DE 19901
About the Job
Since 1975, Maximus has operated under its founding mission of Helping Government Serve the People, enabling citizens around the globe to successfully engage with their governments at all levels and across a variety of health and human services programs. Maximus delivers innovative business process management and technology solutions that contribute to improved outcomes for citizens and higher levels of productivity, accuracy, accountability and efficiency of government-sponsored programs. With more than 30,000 employees worldwide, Maximus is a proud partner to government agencies in the United States, Australia, Canada, Saudi Arabia, Singapore and the United Kingdom. For more information, visit https://www.maximus.com .
The Information System Security Officer (ISSO) Analyst supports the Lead ISSO in the execution of continuous monitoring requirements to sustain FedRAMP authorization of cloud offerings. The ISSO Analyst will assist with cybersecurity management for operational performance and compliance for all networks, systems and applications, and supports centralized management of Security Assessments (SA), ongoing assessments, new authorizations, proposes information security technical and administrative solutions, develops and executes plans for monitoring and assessing networks, systems and applications, supports sustainment of the Risk Management Framework (RMF) Assessment and Authorization (A&A) process.
Additional Requirements as per contract/client:
Candidates must be a US Citizen
Essential Duties and Responsibilities:
- Develop and manage system documentation and artifacts to include policies, procedures, SSP, CMP, CP, and Plan of Actions and Milestones (POA&Ms) and maintain knowledge library and documentation of Standard Operation Procedures (SOPs).
- Facilitate assessment and remediation of monthly compliance scan reports and weekly vulnerability scans \ for compliance to FedRAMP requirements for cloud security offerings and non-cloud systems and applications.
- Create reports used to evaluate trends to support continuous improvement initiatives.
- Manages vulnerability management program for mission-critical IT System Components; review IPS logs, audit logs (system/application) weekly.
- Assess data derived from project and systems performance management processes and identify gaps.
- Perform quality assurance of work products delivered by Info Sec, IT and Project Management team members and service providers.
- Analyze system data and performance reports to support identification of trends and business impact.
- Facilitate daily meetings with all levels within the organization.
- Develop working relationships with management, staff, stakeholders, and partners.
- Manage the activities of the project in accordance with established policies and procedures.
Minimum Requirements
Minimum Requirements
- Bachelor's degree with 3+ years of experience. Will consider experience in lieu of a degree.
- May have additional training or education in area of specialization.; CISSP or Security certification, preferred.
- In depth knowledge of NIST SP 800-53 and NIST SP 800-37 Rev 2. FedRAMP knowledge preferred.
- Knowledge of Qualys and Tenable applications with the ability to identify, assess, and remediate report data.
- Exceptional verbal and written communication.
- Understand Continuous Monitoring of cloud and non-cloud systems.
- Recommend solutions to a variety of system, infrastructure and application problems of moderate scope & complexity.
- Management all required assessment activities for cloud and non-cloud systems.
- Contribute to the completion of organizational projects & goals.
#HODivInt
EEO Statement
Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.
Pay Transparency
Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.