Security Compliance ManagerGDIT • (VAHOME), Office, Home, VA, USA

Security Compliance Manager

GDIT • (VAHOME), Office, Home, VA, USA

30+ days ago

Job type

Full-time

Job description

Job Description :

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.

GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. As a Security Compliance Manager , you will lead our security team in solving challenging problems for our client, the Division of Federal Systems (DFS) for the Office of Child Support Services (OCSS) under Health and Human Services (HHS) Administration for Children & Families (ACF).

Our team provides program support to DFS OCSS to manage and monitor the development, implementation, operation, maintenance, technical support, and enhancement of the division’s systems and services. Federal Parent Locator Service (FPLS) information is, by statute, made available to child support agencies and a limited number of federal and state agencies. These secure systems and services help child support agencies, employers, insurers, and financial institutions exchange information about child support cases; locate parents; establish paternity, custody and visitation; collect support; and identify fraud.

Currently, this role is hybrid. When on-site traveling is required, the work location for this position is the Department of Health and Human Services Mary Switzer Building near Federal Center Southwest in Washington, D.C.

This role’s core responsibilities consist of the following but not limited to :

People Management :

Lead and develop a high-performing security team of 3-4 FTEs to ensure compliance with security standards, while maintaining strong, proactive relationships with customers to meet their unique needs effectively
Serve as the primary point of contact for all client interactions, emphasizing strategic oversight and exemplary service to align with both organizational goals and customer expectations
Lead team meetings and represent security in Governance, Technical Operations, Change Advisory Board, and Technical Review Boards

Federal Systems, Security & Compliance Governance :

Develop and enforce security policies and procedures in compliance with Federal mandates, OMB, NIST standards, HHS / ACF & FPLS security requirements, and customer guidance regarding zero trust, supply chain, risk management, vulnerability management, etc.

Industry Knowledge : Stay abreast of emerging trends, technologies, and regulatory changes in the federal security compliance landscape and provide recommendations for adapting policies and procedures accordingly

Security Authorization :

Security Control Monitoring : Continuously monitor the implementation of security controls by collaborating with stakeholders, conducting regular internal assessments / audits, and recommend corrective actions as needed.

Provide guidance to the design and development teams on security issues and assist as needed in the development of security documentation (specifically, System Security Plan (SSP)) for Security Authorization

Assist the FPLS ISSO, FPLS ITSSO and Technical Manager to ensure that FPLS upholds all security requirements to maintain the ACF Authority to Operate

Risk Management :

Provide oversight to ensure comprehensive risk assessments and vulnerability scanning is performed of system portfolio to identify potential vulnerabilities and weaknesses in the organization's security posture

Participate in routine and on-demand system and application vulnerability scanning, document findings and recommendations, and present analysis of results to stakeholders

Document and track internal POAMs for DFS systems and applications

Incident Response & Reporting :

Maintain Incident Response (IR) Plan

Develop comprehensive reports detailing the nature and impact of each data incident and ensure timely notification to senior management and relevant government officials

Monitor and track data incidents through remediation and closure

Collaborate with internal teams and external stakeholders to effectively manage and resolve data incidents, ensuring adherence to established protocols and regulatory requirements

Utilize root cause analyses to enhance incident response procedures, mitigate risks, and improve overall data security posture and to minimize the risk of recurring incidents

Maintain accurate and comprehensive records of all data incidents, including incident details, response actions, and outcomes

Ensure proper documentation of incident resolution, lessons learned, and recommended preventive measures

Audits & Compliance :

Plan and execute regular audits to assess compliance with federal security standards and regulatory requirements

Support the Security Team in responding to external audits conducted by the HHS Inspector General (IG), Internal Revenue Service (IRS) and other Federal agencies as required

Support systems security evaluations, audits, and reviews.

Prioritize and coordinate the resolution of audit findings.

Contingency Planning / Disaster Recovery :

Maintain and update IT contingency plans and disaster recovery procedures.

Support DR exercises (tabletop, functional, etc.)

Security Site Assessments :

Lead security site assessments conducted on data-matching partner sites and FPLS contractor sites. This includes planning, reviewing relevant documents, writing comprehensive reports, and reviewing / responding to Plans of Action and Milestones (POAMs)

Questionnaire Review : Review questionnaires submitted by our matching partners to assess their adherence to security controls and requirements.

Conduct kickoff meetings and virtual audits to validate the implementation of appropriate security measures

Security Awareness Training :

Manage security trainings to educate staff on federal security requirements and best practices, ensuring that all training meets the compliance standards set by ACF, HHS, and the IRS

Assist in the development and delivery of Security Awareness Training as required

Stakeholder Communication :

Communicate effectively with various stakeholders, including senior management, IT teams, legal teams, and external auditors, to convey compliance issues, risks, and remediation plans.

Support the client in communicating and publishing security alerts, advisories, and bulletins as necessary

Documentation : Maintain accurate and up-to-date documentation of compliance activities, audit findings, and remediation efforts.

Technology :

Proficiency or familiarity with project management tools, particularly Jira, is preferred. The ability to effectively utilize Jira for task tracking, issue management, and collaboration is highly desirable.

WHAT YOU’LL NEED TO SUCCEED :

Bachelor's degree in Computer Science, Information Systems, or in a related field

Minimum of 5 years of experience working as a Federal Security Compliance Analyst with at least 5 years leadership experience in managing teams

2 years security compliance experience NIST, FedRAMP, FISMA, OMB, ZTA, Supply Chain knowledge

PREFERRED QUALIFICATIONS :

Relevant security certifications (e.g., CISSP, CISM, CISA) are highly desirable

GDIT IS YOUR PLACE :

401K with company match

Comprehensive health and wellness packages

Internal mobility team dedicated to helping you own your career

Professional growth opportunities including paid education and certifications

Cutting-edge technology you can learn from

Rest and recharge with paid vacation and holidays

The likely salary range for this position is $140,250 - $189,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours :

Travel Required : Less than 10%

T elecommuting Options :

Hybrid

Work Location :

USA DC Home Office (DCHOME)

Create a job alert for this search

Security Compliance Manager • (VAHOME), Office, Home, VA, USA

Similar jobs

Customs and Border Protection Officer

U.S. Customs and Border Protection • Drakes Branch, Virginia, US

Full-time +1

Customs and Border Protection Officer (CBPO).Please make sure you read the following details carefully before making any applications. Customs and Border Protection (CBP) offers those interested in ...Show more

Last updated: 3 days ago • Promoted

Mission Manager - Active Security Clearance

Cadre • VA, USA

Full-time

Quick Apply

Serve as a specialized officer providing direct support to a client driving complex worldwide operations to develop actionable intelligence against the highest priority threats to US national secur...Show more

Last updated: 30+ days ago

United States Customs and Border Protection Officer

US Customs and Border Protection • Appomattox, VA, United States

Full-time

Customs and Border Protection Officer (CBPO) .Customs and Border Protection (CBP) offers those interested in a career in law enforcement an exceptional opportunity to work with an elite team of hi...Show more

Last updated: 1 day ago • Promoted

Hybrid Manager, e-commerce & Cloud Architecture

EDI Specialists, Inc. • VA, US

Full-time

Hybrid Manager, e-commerce & Cloud Architecture Seeking a Manager, eCommerce & Cloud Architecture to lead the evolution of our eCommerce and digital application platforms.This role owns cloud-first...Show more

Last updated: 18 days ago • Promoted

General Ledger Manager

CMA CGM (America) LLC • VA, US

Full-time

ID : 573184 Location : Norfolk Va, US General Ledger Manager American President Lines (APL), part of the CMA CGM Group, is the premier U. Transpacific proudly serving the American soldier and the U.AP...Show more

Last updated: 20 days ago • Promoted

Customs and Border Protection Officer - Experienced (GS9)

U.S. Customs and Border Protection • Appomattox, Virginia, US

Permanent

Customs and Border Protection Officer (CBPO).In order to make an application, simply read through the following job description and make sure to attach relevant documents.Customs and Border Protect...Show more

Last updated: 1 day ago • Promoted

U.S. Customs and Border Protection Officer

U.S. Customs and Border Protection • Drakes Branch, Virginia, US

Full-time +1

Last updated: 3 days ago • Promoted

United States Customs and Border Protection Officer

U.S. Customs and Border Protection • Appomattox, Virginia, US

Full-time +1

Last updated: 1 day ago • Promoted

CrowdStrike Security Trainee

Openkyber • VA, United States

Full-time

Quick Apply

Location : Manassas, VA Salary : $70.USD Hourly Description : The OpenKyber's direct client in the Financial Services Industry is seeking a Lead Security Engineer / Security Testing Project Manage...Show more

Last updated: 4 days ago

Flexible

HomeJobFinder • Drakes Branch, VA

Remote

Full-time

Flexible Job Opportunity : Link Posting Marketing Rep (No Experience Needed!) • •Are you driven, dependable, and ready to build income from ANYWHERE? • • We’re searching for motivated ...Show more

Last updated: 21 days ago • Promoted

Director of Operations

Appomattox County School District • Appomattox, VA, United States

Full-time

Job Title : Director of Operations.The Director of Operations serves as a division-level leader for the school division overseeing daily operations and oversight of the Food Service, Technology and ...Show more

Last updated: 20 hours ago • Promoted • New!

AI Technical Program Manager

EDI Specialists, Inc. • VA, US

Full-time

Hybrid near Richmond, VA Responsibilities : Reporting to the Director, IT Project & Program Management, the Technical Program Manager, AI is responsible for driving the successful execution and stra...Show more

Last updated: 12 days ago • Promoted

Capture Capture Lead (IT & Cyber)

Progression Inc • VA, US

Full-time

Director Of Business Development Tysons VA Pay From : $150,000 - $230,000 / yr MUST : Experienced Director Of Business Development 5 to 12 Years of RECENT Federal business development experience Experi...Show more

Last updated: 4 days ago • Promoted

Construction Project Manager - Large Site Prep (, VA, United States)

Legacy Executive Search, LLC. • , VA, United States, VA, US

Part-time

Construction Project Manager Large-Scale Site Development.Our client is a leading site development contractor trusted to deliver large-parcel, mission-critical construction projects at scale for s...Show more

Last updated: 1 day ago • Promoted

Tree Maintenance Specialist (All Levels)

Townsend Corporation • Appomattox, VA, United States

Full-time

Join our dedicated team as a Tree Maintenance Specialist, where you'll play a crucial role in ensuring the safety and health of trees in a variety of environments. Your work will include trimming, p...Show more

Last updated: 21 hours ago • Promoted • New!

Project Manager, Principal

WR Systems • VA, US

Full-time

Clearance Requirement : Ability to obtain and maintain a Secret Clearance Travel Requirements : None Location : Norfolk, VA SUMMARY : WR has an opportunity for a Project Manager, Principal to manage an...Show more

Last updated: 1 day ago • Promoted

Kitchen Manager - Restaurant

Wegmans Food Markets • Virginia, US

Full-time

Schedule : Full time Availability : Applying To This Requisition Allows You To Be Considered For Multiple Opportunities.Please Provide As Much Availability That Works With Your Schedule.Age Requir...Show more

Last updated: 2 days ago • Promoted

General Manager

Pizza Hut • Appomattox, VA, United States

Full-time

TITLE : Salaried Restaurant General Manager (Salaried RGM).The person holding this supervisory position is responsible and accountable for : planning work, the daily operation of the restaurant, hiri...Show more

Last updated: 1 day ago • Promoted