Job Specifications
Position Overview
Title: Security Analyst – Consultant (ISSO) | W2 CONTRACT ROLE
Location: Columbia, SC (Jefferson Square)
Work Type: Fully Onsite (5 days/week – no remote option)
Interview Process: 2 rounds (Virtual + In-Person)
Candidate Eligibility
Must be a South Carolina resident OR willing to relocate to SC prior to start date at own expense
Must be able to work onsite from Day 1
Role Summary
The Senior Information System Security Officer (ISSO) will lead and support security, risk, and compliance initiatives for Client. This role supports complex cybersecurity programs aligned with FISMA, NIST, CMS MARS-E, HIPAA, and state security policies.
The ideal candidate is a self-driven, results-oriented cybersecurity professional with strong communication skills and experience working across multiple stakeholders, vendors, and leadership teams.
Key Responsibilities
Act as a senior cybersecurity consultant to leadership and business units
Lead Security, Risk, and Compliance activities for enterprise systems
Develop and maintain SSPs, PIAs, ISAs, CMAs, and other RMF/A&A artifacts
Perform architectural reviews and risk assessments (network design, access models, firewall rules, vulnerability management)
Audit internal systems and third-party/vendor security controls
Serve as primary contact for third-party audits and assessments
Review security and compliance aspects of contracts and data-sharing agreements
Collaborate with internal teams, vendors, and external partners on risk mitigation
Document findings using tools such as Archer eGRC, Microsoft Office, Atlassian, Bizagi, and ticketing systems
Required Experience & Skills
5+ years of IT security experience working with or auditing:
IBM System 390/zSeries
Windows & Linux servers
Relational & NoSQL databases
Network infrastructure & web-based applications
Experience working in a FISMA-compliant program
Hands-on experience with eGRC tools (Archer preferred)
Strong working knowledge of FISMA, NIST, CMS MARS-E, HIPAA
Experience integrating RMF/A&A activities into the SDLC
Excellent written and verbal communication skills
Preferred / Desired Skills
Experience with cloud security and vendor management
Familiarity with:
SIEM solutions
IAM solutions
Firewalls, IPS, switching & routing
ITIL experience in Information Security Management
Prior Health IT experience (preferred, not required)
Certifications (Required)
One or more of the following:
ISC(2) (CISSP, etc.)
ISACA (CISM, CISA, etc.)
SANS GIAC or equivalent security certification
Education
Bachelor’s degree in Computer Science or related field OR 10+ years of relevant industry experience
About the Company
We are a cutting-edge consulting firm specializing in Technology Solutions. We are dedicated to helping customers effectively execute, manage and support their Technical project or product to success. Direct clientele includes IT System Integrators, IT Engineering, Product Engineering in Aerospace, Automotive, Manufacturing Execution Systems, Healthcare/Life Science, Finance, Insurance Etc. VUI delivers IT Staffing for FTE hires, staff augmentation for contract or contract to hire, and Project Solutions for Full Lifecycle en...
Know more