Security Analyst - Consultant

Title : Security Analyst - Consultant (8799)

Work Location : Columbia, SC - Fully Onsite (5 days / week)

Contract Duration : 12 Months

Extension : Yes

Interview Process : 2 Rounds (Virtual + In-Person)

Candidate Requirement : Must be an SC resident or willing to relocate prior to start

Job Description

The Client is seeking an experienced Security Analyst - Consultant (Information Systems Security Officer - ISSO) to support the Office of Cybersecurity (OCS) at SCDHHS. The consultant will lead and enhance security, compliance, and risk management activities for systems governed by FISMA, NIST, CMS MARS-E, and HIPAA.

The ISSO will work closely with agency leadership, vendors, and business units to ensure security requirements are implemented, documented, monitored, and maintained across multiple systems. The role is fully onsite and requires strong experience in risk management, FISMA programs, technical auditing, and eGRC tools.

Daily Responsibilities

• Support and lead cybersecurity, risk, and compliance initiatives for SCDHHS.
• Develop, update, and maintain RMF documentation such as SSPs, PIAs, ISAs, and CMAs.
• Participate in security assessments, audits, interviews, and evidence verification.
• Conduct security reviews of network designs, information flows, access models, firewall rule requests, and system configuration changes.
• Provide guidance on vulnerability management and remediation tracking.
• Perform reviews of contracts, BAAs, data-sharing agreements, and related documents.
• Work with eGRC tools (Archer preferred) to track compliance artifacts.
• Support oversight of cloud solutions and vendor security controls.
• Act as primary point of contact during third-party audits and assessments.
• Document findings and prepare reports using Microsoft Office, Service Manager, Bizagi, and Atlassian tools.
• Collaborate with multiple teams, leadership, and external partners to ensure effective risk mitigation.

Required Skills

Preferred Skills

About US : InterSources Inc. is a Small, Woman, and Minority-Owned Business Enterprise, ISO / IEC 27001, SOC 2 Type 2 certified company with massive 18+ years of diversified experience in providing IT Consulting Services, Artificial Intelligence, Data Analysis, Application Development, Cloud Services, Cybersecurity, Digital Marketing, ERP Management, Custom Software Development, Web Development, UI / UX Design, System Integration, QA Support etc. We make reasonable accommodations for clients and employees, and we do not discriminate based on any protected attribute including race, religion, color, national origin, gender sexual orientation, gender identity, age, or marital status. We also are a Google Cloud and Oracle partner company.