What are the responsibilities and job description for the Cybersecurity Compliance/Software QA position at InoMedic Health Applications?
Overview:
The Cybersecurity Compliance/Software QA is responsible for developing system security plans, handling cyber risk decisions, and enabling our mission partners to innovate in a secure environment in support of IHA Occupational Medical Services (OMS) at the Hanford environmental restoration site in Richland, Washington.
Duties/Responsibilities:
The Cybersecurity Compliance/Software QA is responsible for the following duties and responsibilities:
- Ensure classified systems follow government and APL regulations while still meeting program demands and operating in an accredited state.
- Participate in all aspects of SSP development, maintenance, accreditation/re-accreditation, and oversight, including conducting periodic reviews to ensure compliance.
- Review, develop, update, and/or maintain cyber security documentation which may include policies, procedures, documentation, and checklists.
- Assist in the development and maintenance of System Security Plans, Plans of Action and Milestones (POA&Ms).
- Participate in security assessments including the coordination, evaluation of on premises and cloud environments, collection of evidence and artifacts, and documenting results.
- Work collaboratively with internal teams to maintain applied knowledge of NIST SP 800-171, DFARS 252.204-7012, CMMC 2.0, FedRAMP, NIST SP 800-53 and other associated standards and regulations.
- Leverage growing knowledge and expertise to problem-solve areas of concern for clients and collaborate to provide cost effective solutions or processes to meet the intent of requirements.
Qualifications:
The Cybersecurity Compliance/Software QA shall have 2 years of relevant cybersecurity experience, or 4 years of relevant cybersecurity experience.
Hold a current Security , CASP , CISSP, CISSP Associate, CAP, or GSLC or other cybersecurity certification.
Have 2 years working with the RMF, DAAPM, NISPOM, JSIG or other equivalent security frameworks.
Education / Training:
The Cybersecurity Compliance/Software QA shall have acquired a BS in Computer Science, Cyber Security, or a related field.
Knowledge / Skills/Abilities:
Demonstrated understanding of NIST SP.800-171, NIST SP.800-171A, NIST SP.800-53, NIST SP.800-53A, FedRAMP and/or other similar federal government regulations and industry standards
Strong interpersonal communication skills and curiosity to continuously learn.
Excellent organizational skills with ability to prioritize project workloads.
Proficient in Microsoft Office Online/Microsoft 365 (Word, PowerPoint, Excel, Outlook).
Creative and innovative thinking, problem solving and analytical skills.
Possess strong customer service skills and a customer-focused mindset.
Must maintain a high degree of integrity, confidentiality, and privacy.
Working understanding of IT and Infrastructure acronyms and definitions.
Licenses/Certifications/Registrations:
The Cybersecurity Compliance/Software QA shall hold a current Security , CASP , CISSP, CISSP Associate, CAP, or GSLC or other cybersecurity certification.
Supervisory Responsibilities:
N/A
Working Conditions:
This is a general medical office environment and may require minor lifting and bending.
Complies with all Company safety policies and site-specific safety procedures. Participates in and supports the Hanford safety program. Ensures safe operating conditions within area of responsibility. Identifies potential hazards, concerns, and safety incidents and reports to supervisory personnel.
