Talent.com
Security Compliance Manager
Security Compliance ManagerGDIT • (VAHOME), Office, Home, VA, USA
Security Compliance Manager

Security Compliance Manager

GDIT • (VAHOME), Office, Home, VA, USA
30+ days ago
Job type
  • Full-time
Job description

Job Description :

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.

GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. As a Security Compliance Manager , you will lead our security team in solving challenging problems for our client, the Division of Federal Systems (DFS) for the Office of Child Support Services (OCSS) under Health and Human Services (HHS) Administration for Children & Families (ACF).

Our team provides program support to DFS OCSS to manage and monitor the development, implementation, operation, maintenance, technical support, and enhancement of the division’s systems and services. Federal Parent Locator Service (FPLS) information is, by statute, made available to child support agencies and a limited number of federal and state agencies. These secure systems and services help child support agencies, employers, insurers, and financial institutions exchange information about child support cases; locate parents; establish paternity, custody and visitation; collect support; and identify fraud.

Currently, this role is hybrid. When on-site traveling is required, the work location for this position is the Department of Health and Human Services Mary Switzer Building near Federal Center Southwest in Washington, D.C.

This role’s core responsibilities consist of the following but not limited to :

People Management :

  • Lead and develop a high-performing security team of 3-4 FTEs to ensure compliance with security standards, while maintaining strong, proactive relationships with customers to meet their unique needs effectively
  • Serve as the primary point of contact for all client interactions, emphasizing strategic oversight and exemplary service to align with both organizational goals and customer expectations
  • Lead team meetings and represent security in Governance, Technical Operations, Change Advisory Board, and Technical Review Boards

Federal Systems, Security & Compliance Governance :

  • Develop and enforce security policies and procedures in compliance with Federal mandates, OMB, NIST standards, HHS / ACF & FPLS security requirements, and customer guidance regarding zero trust, supply chain, risk management, vulnerability management, etc.
  • Industry Knowledge : Stay abreast of emerging trends, technologies, and regulatory changes in the federal security compliance landscape and provide recommendations for adapting policies and procedures accordingly

    • Security Authorization :

  • Security Control Monitoring : Continuously monitor the implementation of security controls by collaborating with stakeholders, conducting regular internal assessments / audits, and recommend corrective actions as needed.
  • Provide guidance to the design and development teams on security issues and assist as needed in the development of security documentation (specifically, System Security Plan (SSP)) for Security Authorization
  • Assist the FPLS ISSO, FPLS ITSSO and Technical Manager to ensure that FPLS upholds all security requirements to maintain the ACF Authority to Operate

    • Risk Management :

  • Provide oversight to ensure comprehensive risk assessments and vulnerability scanning is performed of system portfolio to identify potential vulnerabilities and weaknesses in the organization's security posture
  • Participate in routine and on-demand system and application vulnerability scanning, document findings and recommendations, and present analysis of results to stakeholders
  • Document and track internal POAMs for DFS systems and applications

    • Incident Response & Reporting :

  • Maintain Incident Response (IR) Plan
  • Develop comprehensive reports detailing the nature and impact of each data incident and ensure timely notification to senior management and relevant government officials
  • Monitor and track data incidents through remediation and closure
  • Collaborate with internal teams and external stakeholders to effectively manage and resolve data incidents, ensuring adherence to established protocols and regulatory requirements
  • Utilize root cause analyses to enhance incident response procedures, mitigate risks, and improve overall data security posture and to minimize the risk of recurring incidents
  • Maintain accurate and comprehensive records of all data incidents, including incident details, response actions, and outcomes
  • Ensure proper documentation of incident resolution, lessons learned, and recommended preventive measures

    • Audits & Compliance :

  • Plan and execute regular audits to assess compliance with federal security standards and regulatory requirements
  • Support the Security Team in responding to external audits conducted by the HHS Inspector General (IG), Internal Revenue Service (IRS) and other Federal agencies as required
  • Support systems security evaluations, audits, and reviews.
  • Prioritize and coordinate the resolution of audit findings.

    • Contingency Planning / Disaster Recovery :

  • Maintain and update IT contingency plans and disaster recovery procedures.
  • Support DR exercises (tabletop, functional, etc.)

    • Security Site Assessments :

  • Lead security site assessments conducted on data-matching partner sites and FPLS contractor sites. This includes planning, reviewing relevant documents, writing comprehensive reports, and reviewing / responding to Plans of Action and Milestones (POAMs)
  • Questionnaire Review : Review questionnaires submitted by our matching partners to assess their adherence to security controls and requirements.
  • Conduct kickoff meetings and virtual audits to validate the implementation of appropriate security measures

    • Security Awareness Training :

  • Manage security trainings to educate staff on federal security requirements and best practices, ensuring that all training meets the compliance standards set by ACF, HHS, and the IRS
  • Assist in the development and delivery of Security Awareness Training as required

    • Stakeholder Communication :

  • Communicate effectively with various stakeholders, including senior management, IT teams, legal teams, and external auditors, to convey compliance issues, risks, and remediation plans.
  • Support the client in communicating and publishing security alerts, advisories, and bulletins as necessary
  • Documentation : Maintain accurate and up-to-date documentation of compliance activities, audit findings, and remediation efforts.

    • Technology :

  • Proficiency or familiarity with project management tools, particularly Jira, is preferred. The ability to effectively utilize Jira for task tracking, issue management, and collaboration is highly desirable.

    • WHAT YOU’LL NEED TO SUCCEED :

  • Bachelor's degree in Computer Science, Information Systems, or in a related field
  • Minimum of 5 years of experience working as a Federal Security Compliance Analyst with at least 5 years leadership experience in managing teams
  • 2 years security compliance experience NIST, FedRAMP, FISMA, OMB, ZTA, Supply Chain knowledge

    • PREFERRED QUALIFICATIONS :

  • Relevant security certifications (e.g., CISSP, CISM, CISA) are highly desirable

    • GDIT IS YOUR PLACE :

  • 401K with company match
  • Comprehensive health and wellness packages
  • Internal mobility team dedicated to helping you own your career
  • Professional growth opportunities including paid education and certifications
  • Cutting-edge technology you can learn from
  • Rest and recharge with paid vacation and holidays

    • The likely salary range for this position is $140,250 - $189,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

    Scheduled Weekly Hours :

    40

    Travel Required : Less than 10%

    T elecommuting Options :

    Hybrid

    Work Location :

    USA DC Home Office (DCHOME)

    Create a job alert for this search

    Security Manager • (VAHOME), Office, Home, VA, USA

    Related jobs
    Network Security Compliance Analyst

    Network Security Compliance Analyst

    Cyber Resource • Virginia, US
    Full-time
    Required Skill : Experience with networking concepts including HTTPS, TLS, CIDR notation, RFC 1918 address space Experience with internet proxy platforms such a...Show more
    Last updated: 18 days ago
    Security Officer - Shopping Mall

    Security Officer - Shopping Mall

    Allied Universal • Lynchburg, VA, US
    Full-time
    Allied Universal, North America's leading security and facility services company, offers rewarding careers that provide you a sense of purpose. While working in a dynamic, welcoming, and collaborati...Show more
    Last updated: 2 days ago • Promoted
    Cybersecurity Principal / Architect (7-10+ years exp.) (Senior Level)

    Cybersecurity Principal / Architect (7-10+ years exp.) (Senior Level)

    Think Tank, Inc. • VA, USA
    Full-time
    Quick Apply
    On-site in Fairfax, Virginia, only.Think Tank is a woman-owned small business with more than 27 years of proven success delivering exceptional IT and consulting services to the federal government.W...Show more
    Last updated: 30+ days ago
    Operations Manager

    Operations Manager

    American International Contractors, Inc. • 221022, VA, US
    Full-time
    Quick Apply
    American International Contractors (Special Projects), Inc.AICI-SP) is seeking an Operations Manager to work out of our McLean, VA office with regular travel to overseas construction project sites ...Show more
    Last updated: 30+ days ago
    MILITARY POLICE

    MILITARY POLICE

    US Army • Lynchburg, Virginia, United States
    Full-time +1
    THIS POSITION REQUIRES AN ENLISTMENT IN THE U.As a Military Police, you’ll protect peoples’ lives and property on Army installations by enforcing military laws and regulations.You’ll also control t...Show more
    Last updated: 1 day ago • Promoted
    Corrections Officer : Dillwyn Correctional Center

    Corrections Officer : Dillwyn Correctional Center

    Virginia Jobs • Buckingham, VA, United States
    Full-time
    Corrections Officer : Dillwyn Correctional Center #00416.Sign On Bonus for Eligible New Hires! • • •.Corrections officers contribute to the public safety mission by providing for the safety and securit...Show more
    Last updated: 30+ days ago • Promoted
    Registered Nurse - Correctional

    Registered Nurse - Correctional

    American Medical Staffing • Burkeville, VA, US
    Full-time
    American Medical Staffing is seeking a travel nurse Correctional for a travel nursing job in Burkeville, Virginia.Job Description & Requirements. We’re living in the new normal.Lives and c...Show more
    Last updated: 30+ days ago • Promoted
    Information Systems Manager (Riverville, VA)

    Information Systems Manager (Riverville, VA)

    Packaging Corporation of America • Gladstone, VA, United States
    Full-time
    As a Fortune 500 company, Packaging Corporation of America (PCA) is an ideas and solutions company.Our corrugated packaging business seeks to be the leader in helping our customers - large and smal...Show more
    Last updated: 10 days ago • Promoted
    Mission Manager - Active Security Clearance

    Mission Manager - Active Security Clearance

    Cadre • VA, USA
    Full-time
    Quick Apply
    Serve as a specialized officer providing direct support to a client driving complex worldwide operations to develop actionable intelligence against the highest priority threats to US national secur...Show more
    Last updated: 30+ days ago
    Travel Nuclear Medicine Technologist - $2,600 per week

    Travel Nuclear Medicine Technologist - $2,600 per week

    LanceSoft • Farmville, VA, US
    Full-time +1
    LanceSoft is seeking a travel Nuclear Medicine Technologist for a travel job in Farmville, Virginia.Job Description & Requirements. Prior travel experience is required.Minimum 2–3 years of experienc...Show more
    Last updated: less than 1 hour ago • Promoted • New!
    Process Control Engineer (Riverville Mill)

    Process Control Engineer (Riverville Mill)

    Packaging Corporation of America • Gladstone, VA, United States
    Full-time
    As a Fortune 500 company, Packaging Corporation of America (PCA) is an ideas and solutions company.Our corrugated packaging business seeks to be the leader in helping our customers - large and smal...Show more
    Last updated: 30+ days ago • Promoted
    Electrical Reliability Engineer (Riverville Mill)

    Electrical Reliability Engineer (Riverville Mill)

    Packaging Corporation of America • Gladstone, VA, United States
    Full-time
    As a Fortune 500 company, Packaging Corporation of America (PCA) is an ideas and solutions company.Our corrugated packaging business seeks to be the leader in helping our customers - large and smal...Show more
    Last updated: 30+ days ago • Promoted
    Contractor - Security

    Contractor - Security

    SMK Soft Inc • VA, United States
    Full-time
    Quick Apply
    Description : Job Description attached.BasedHiringFlag"> Enable Skills-B...Show more
    Last updated: 2 days ago
    Purchasing Manager

    Purchasing Manager

    Packaging Corporation of America • Gladstone, VA, United States
    Full-time
    As a Fortune 500 company, Packaging Corporation of America (PCA) is an ideas and solutions company.Our corrugated packaging business seeks to be the leader in helping our customers - large and smal...Show more
    Last updated: 30+ days ago • Promoted
    Corrections Officer : Buckingham Correctional Center

    Corrections Officer : Buckingham Correctional Center

    Virginia Department of Human Resource Management • Buckingham, VA, United States
    Full-time
    Corrections Officer : Buckingham Correctional Center #00498.Corrections Officer : Buckingham Correctional Center #00498.Buckingham Correctional Center. Sign-On Bonus Available to Eligible New Hires! • •...Show more
    Last updated: 30+ days ago • Promoted
    Corrections Officer (Hourly) : Dillwyn Correctional Center

    Corrections Officer (Hourly) : Dillwyn Correctional Center

    Virginia Department of Human Resource Management • Buckingham, VA, United States
    Full-time
    Corrections Officer (Hourly) : Dillwyn Correctional Center #W0019.Corrections Officer (Hourly) : Dillwyn Correctional Center #W0019. The Virginia Department of Corrections (VADOC) is looking for motiv...Show more
    Last updated: 30+ days ago • Promoted
    Application Security Engineer

    Application Security Engineer

    VivSoft Technologies • VA, US
    Full-time
    Quick Apply
    Application Security Engineer Clearance Required : Public Trust Location : Remote, USA Position Type : Full-Time About the company : At VivSoft, we aim to s...Show more
    Last updated: 30+ days ago
    LPN / LVN - Correctional

    LPN / LVN - Correctional

    American Medical Staffing • Victoria, VA, US
    Full-time
    American Medical Staffing is seeking a LPN / LVN Correctional for a travel job in Victoria, Virginia.Job Description & Requirements. We’re living in the new normal.Lives and careers look d...Show more
    Last updated: 30+ days ago • Promoted