Available Positions
Job Title: FISMA Compliance Analyst
Location: Washington, DC / Houston, TX / Remote (upon approval)
Job Type: Contract to Hire
As V3Main’s Federal Information Security Modernization Act (FISMA) Specialist, you will be a critical member of our Regulatory Compliance team. In this role, you will act as an internal consultant, owning all things FISMA. Through extensive planning, focused execution, and diligent follow through, this role will ensure compliance, successful audits (preparation, document creation and organization, etc.), and continually iterate on V3Main’s processes and technology to improve our security. This role works closely with our Information Security team to create a lasting foundation for our rapidly growing organization.

The FISMA specialist will be responsible for identifying and implementing necessary process changes to maintain privacy and security certifications including FISMA, ISO 27001, SOC 2, and others. The FISMA specialist will assist in proactively identifying possible security and privacy concerns and inadequate systems that can negatively impact patients and customer satisfaction. The FISMA specialist is also responsible for leading improvement initiatives based on their findings. A successful candidate will be a self-starter, have strong attention to detail, excellent communication skills and a proven track record of managing cross-functional projects throughout all levels of the organization and its clients.  

Duties/Responsibilities:
  • Understand and remain current on applicable privacy and security requirements (i.eFISMA, FedRamp, ISO 27001, SOC 2, HIPAA, GDPR, ISO 27001, etc.)
  • Maintain company policies and procedures in compliance with FISMA and selected
  • laws/regulations and provide recommendations for improvement
  • Develop and maintain strong working relationships with internal teams
  • Raise security/privacy awareness throughout the organization
  • Support the audit functions through the gathering and/or review of documentation for submission to internal and/or external stakeholders, and coordination/completion of Corrective and Preventive Actions
  • Collaborate with internal teams to document trends and risks in order to develop, implement, and lead initiatives that will improve V3Main’s privacy and security landscape
  • Review audit reports, notice of findings and recommendations, and corrective action plans (CAPAs) and provide guidance and recommendations; project manage CAPAs to completion, leaning on internal shareholders and operational owners
  • Ensure that documented processes are followed in a consistent, timely and efficient manner
  • Act as technical expert on information security control questions and questionnaires
  • Coordinate process changes in response to new and/or updated security regulations
Qualifications:
  • Degree in Information Technology or related field is Desired 
  • 3+ years experience with FISMA and/or FEDRAMP or similar security regulations/standard
  • Ability to clearly communicate and define requirements
  • Strong verbal and written communication skills in English
  • Well-organized and project-oriented
  • Excellent teamwork skills, and the ability to develop and maintain internal and external relationships
  • Proven ability to influence cross-functional teams
  • Ability to identify process gaps and assess best solutions based on the company maturity and available tools

V3Main offers excellent careers opportunities for professionals who possess outstanding interpersonal skills and are results-oriented team players.  If you are interested to join our team,  please submit your resume and cover letter on the Apply page or email it to [email protected].