MCGlobalTech is looking for SMEs - Security Compliance Specialist to support IT Security Assessment projects throughout the US.
The Security Compliance Specialist shall be responsible for completing and maintaining documentation such as the system security plan, security risk assessment, security control assessment activities, and continuous monitoring in small business environments. Security documentation will be required to achieve and maintain system Authorization-to-Operate (ATO).
The security compliance specialist will work with the Clients Office of Information Security team and stakeholders to identify, document, and evaluate the status system security controls. Addition responsibilities will include using our security configuration management tools and reports to identify risks and track findings against Federal security policies and guidelines for mitigation planning and remediation.
Security responsibilities include developing and maintaining system SSP, ISCP, IR Plan, CM Plans, Audit Plans, and ATO package documentation requirements. The security compliance specialist will support the security assessment process from planning and coordinating meetings with Client and assessors to remediation and corrective action planning.
Additional responsibilities may include performing annual control reviews as part of continuous monitoring to identify new risks, track findings against Federal security policies and guidelines, managing Plan-of-Action and Milestone (POAM) to closure and mitigation planning and remediation of controls in the Cloud environment. Candidates are encouraged to have a technical background to support the role
Required Technical Skills
Controlled Unclassified Information (NIST 800-171)
Security compliance experience (NIST 800-53 and applicable special publications, FISMA, FedRAMP)
Information Security Management System experience (ISO 27001)
Must have the ability to travel (up to 50%) as required
Required Education & Experience
8+ years of relevant experience
Mission Critical Global Technology Group (MCGlobalTech) is a minority owned, small business founded by industry leaders to provide strategic advisory and security consulting services to public and private sector business managers to better align technology and security programs with organizational mission and business goals.