Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy, and consent to receive emails from Rise
Jobs / Job page
Information Systems Security Engineer image - Rise Careers
Job details

Information Systems Security Engineer

Job Summary:

We are seeking an experienced Information Systems Security Officer to join our dynamic team. In this role, you will support our client's ISSO and Risk and Compliance teams, participating in activities related to risk management, compliance, and information system security. Your expertise in FedRAMP, RMF, and accreditation assessments will be crucial in ensuring our client's systems adhere to Federal standards.

Job Duties and Responsibilities:

  • Support a real-time risk management system that fosters collaboration and enhances security practices within the organization.
  • Conduct regular security risk analyses for hospitals and healthcare systems to identify vulnerabilities and mitigate potential threats.
  • Stay abreast of Healthcare IT technologies and apply NIST 800 series methodologies to safeguard them effectively.
  • Provide technical analysis and support to accreditation assessors and ISSOs.
  • Conduct analysis of current environment and provide recommendations to align accreditation processes with NIST and RMF guidance
  • Create and maintain information security policies in compliance with NIST and HIPAA regulations.
  • Utilize Archer to develop and maintain system accreditation lifecycle workflows and ATO packet management processes.
  • Conduct comprehensive security control assessments following NIST, IHS, and CISA guidelines
  • Conduct security risk analyses for current and emerging systems
  • Conduct comprehensive assessments of security controls for IHS systems and sites, following NIST and CISA guidelines and ensuring adherence to risk management practices.
  • Thoroughly review system and site artifacts to verify compliance with NIST RMF requirements and identify potential areas for improvement.
  • Utilize network scanning and patching tools to mitigate vulnerabilities and enhance system security.
  • Prepare and present Approval to Operate (ATO) or Interim Approval to Test (IATT) documents, ensuring compliance with assessment requirements and CATOs.
  • Stay current with relevant NIST publications, NIST, CISA and IHS standards, and other guidelines.
  • Contribute to the development of policies, procedures, and methodologies that align with NIST RMF and support the organization's transition to these frameworks.
  • Utilize network scanning and patching tools to mitigate vulnerabilities and enhance system security.
  • Participate in staff assistance visits and annual FISMA security control assessments for DRSN sites, providing valuable insights and recommendations for improvement.
  • Provide expert advice and produce necessary artifacts to ensure ongoing compliance with NIST RMF requirements and maintain a robust security posture.
  • Ability to coordinate risk assessment and compliance activities between GRC and ISSO teams
  • Expert level knowledge of RMF process, accreditation assessments, and DISA-STIGs for both on premises and cloud environments
  • Excellent communication and briefing skills to communicate to client leadership
  • Conduct regular security risk analyses for healthcare systems to identify vulnerabilities and mitigate potential threats.
  • Ensure compliance with relevant regulations and standards to provide guidance to system owners on the selection and implementation of appropriate security controls.
  • Support vulnerability management through regular assessments and compliance reporting.
  • Experience with Tenable to request ad-hoc scans, review reports, and provide analysis to stakeholders.
  • Provide input to the design and delivery training programs to educate system owners and employees on risk management, compliance, and security best practices to foster and maintain a comprehensive and proactive security culture.

Job Requirements (Education/Skills/Experience):

  • Bachelor’s degree required
  • CISSP required.
  • 3-5 years of relevant experience.
  • Strong knowledge and understanding of HIPAA, PII, NIST, FISMA, and FedRAMP.
  • Proficiency with Nessus and Archer GRC (2 years desired).
  • Knowledge of RMF, NIST, accreditation assessments, and DISA-STIGs.
  • Excellent communication and briefing skills for client leadership.

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.

 

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.

Average salary estimate

$75000 / YEARLY (est.)
min
max
$60000K
$90000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

Similar Jobs

Become a vital part of DDC as a Senior DB2 Database Systems Programmer, tackling challenges in a DOD data-sharing environment.

Photo of the Rise User
Posted 13 days ago

Join us as an IT Service Desk Manager to lead a dedicated team in enhancing our mental health organization's technological support.

Photo of the Rise User

Join Kaseware as an Azure Cloud Infrastructure and DevSecOps Engineer, where you will help shape the future of security technology.

Photo of the Rise User
Sustainable Talent Hybrid Santa Clara, California, United States
Posted 13 days ago

Join NVIDIA's Infrastructure, Planning and Processes team as an SRE & DevOps Engineer, driving essential infrastructure projects in a dynamic environment.

Photo of the Rise User
Posted 3 days ago

Join Ulteig as a ServiceNow Support Administrator to optimize their innovative platform in contributing to sustainable infrastructure solutions.

Posted 5 days ago

Become a crucial part of LPL Financial as a Sr. Vulnerability Management Engineer, where your expertise ensures the security of our financial services.

Photo of the Rise User

Become a vital part of Millennium Corporation's elite cybersecurity team as a Red Team Security Engineer and leverage your skills to protect critical networks.

Photo of the Rise User
Posted 12 days ago

Join GuidePoint Security as a Cloud Security Engineer and take a key role in enhancing cloud security for top organizations.

Photo of the Rise User
Eurofins Hybrid San Diego, CA, USA
Posted 13 days ago

Join Eurofins Scientific as an IT Generalist, where you will support laboratory automation and enhance research capabilities with innovative IT solutions.

Photo of the Rise User
Zipline Hybrid South San Francisco, California, USA
Posted 9 days ago

Step into a pivotal leadership role as Head of Security at Zipline, driving innovative cybersecurity practices in a transformative logistics company.

Photo of the Rise User
Posted 7 days ago

Join TD as an IT Solutions Design Specialist, where you'll lead the design of complex solutions in a dynamic environment.

Photo of the Rise User
Posted 12 days ago

Join Adaptavist as a Senior DevOps Consultant to lead the transformation of infrastructure and automated delivery for clients in a fully remote environment.

Photo of the Rise User
Highmark Health Hybrid PA, Working at Home - Pennsylvania
Posted 10 days ago

enGen is looking for a Remote Associate Technical Analyst to enhance application product life cycle support while collaborating with cross-functional teams to drive success.

Photo of the Rise User
Intelerad Hybrid Remote, United States, United States
Posted 5 days ago

Become an integral part of Intelerad's mission as a PACS Technical Implementation Specialist, supporting healthcare IT solutions remotely.

MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
HQ LOCATION
No info
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
April 11, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!