Cloud Risk and Compliance Analyst
Job Description
Operations Security Advisor I Cloud Risk and Compliance Analyst
Candidate will be expected to work on customer site up to two days per week.
- Provide Risk Management Framework (RMF) subject matter expertise to the client.
- Experience implementing security controls and compliance with a Cloud Service Provider CSP (AWS or Azure)
- Support ongoing compliance activities and monitoring efforts across applicable Regulations and Standards (NIST-800-53, FedRAMP)
- Collaborate with cross-functional teams to implement compliance initiatives and security controls
- Monitor and track activities related to control remediation or corrective action.
- Partner with business and IT teams to develop and deliver risk mitigation plans, implement additional control activities, or document risk acceptance
- Experience with FedRAMP compliance, Cloud systems and the Customer Responsibility Matrix (CRM)
- Coordinate with Authorizing Officials, System Owners, Engineers, ISSO and other applicable teams to create and update SSPs, SARs, SIAs, Security Impact Analysis and other applicable documentation for legacy on-prem and Cloud systems.
- Assess and determine the NIST 800-53 Control Status for multiple ATOs.
- Update and maintain POAMs and ATO packages in CSAM
- Ensure assessment and authorization packages are in compliance with Federal government compliance and client requirements.
- On-time submission of contract deliverables with special attention to quality and accuracy.
- Monitor, track, and report on daily, weekly, and monthly team program initiatives.
- Evaluate configuration management (CM) for information system security software, hardware, and firmware.
Other Job Specific Skills :
- Experience and knowledge of NIST SP 800-37, NIST SP 800-53r5, FedRamp
- Experience and knowledge of performing risk and vulnerability assessments for the purpose of change management (SIA).
- POAM management, tracking and reporting.
- Experience with RMF and Cloud authorization processes and procedures.
- Experience with categorization of Federal government systems.
- Experience in policy implementation with a Federal government client.
- Technical writing skills to include SOPs and Control Implementation.
Cloud Risk and Compliance Analyst
Operations Security Advisor I – Cloud Risk and Compliance Analyst. Coordinate with Authorizing Officials, System Owners, Engineers, ISSO and other applicable teams to create and update SSPs, SARs, SIAs, Security Impact Analysis and other applicable documentation for legacy on-prem and Cloud systems....
Senior Risk & Compliance Analyst
Accountable for the review and interpretation of authoritative guidance (including, but not limited to NIST, HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO reports) and performs qualitative and quantitative impact assessments based on physical, technical, and administrative safeguards as well as contract...
Operational Technology Security and Risk Compliance Analyst
Creates cyber-intelligence tools / methods and performs research and analysis in order to mitigate and eliminate high level data and cyber security risks. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and. Designs, tests and implement...
SkillBridge & MilSpouse Fellowship Program, Operations Compliance Analyst (EH&S)
We embrace diversity in thought and contribution and are committed to providingan equitable work environment that is foundational to our core values as a company and is vital to our success. Maintains a moderate level of required compliance records in local/global repositories including: records rel...
Director of Business Development, Legal, Compliance, and Risk
Under the direction of the Regional Business Development Director (RBDD), and in collaboration with practice leadership, and the Chief Business Development Officer, the Director of Business Development, Legal, Compliance & Risk, is responsible for driving, monitoring and improving sales performance ...
Strategy Insights & Planning Consultant/Life Sciences Privacy Risk and Compliance
This role will be important to help develop capabilities and service offerings to advance ZS as a leader in delivering strategic risk management solutions for clients by: (1) Integrating risk management into design of solutions; (2) Targeting risk and resources based on compliance insights from adva...
Director, Risk, Forensics & Compliance (Compliance, Investigations & Oversight)
Professional and conceptual agility to design and execute compliance risk mitigation and information security solutions that are adaptive to client risks and requirements across multiple domains . Working both independently and with team members as the project lead to successfully execute proj...
Director, Risk, Forensics & Compliance (National Security, Trade & Technology)
Professional and conceptual agility to design and execute compliance risk mitigation and information security solutions that are adaptive to client risks and requirements across multiple domains . Working both independently and with team members as the project lead to successfully execute proj...
Software Engineer 2- TS/SCI w POLY Required - Security Clearance Required
Confer with system engineers and hardware engineers to derive software requirements and to obtain information on project limitations and capabilities, performance requirements and interfaces. Develop software solutions by analyzing system performance standards, confer with users or system engineers;...
Network Engineer Skill Level 3 - Security Clearance Required
Design and verify network solutions to support requirements for routing protocols, policy based routing, traffic shaping, border gateway protocols, tunneling IP Security, network address translations, network security, firewall contexts, load-balancing, latency, data throughput, WAN acceleration, an...