Job Description:
• Provide expertise in security frameworks and compliance measures
• Work with security teams in relevant domains
• Communicate effectively with stakeholders
• Organize and manage project tasks
• Support audit and compliance measures
Requirements:
• Experience with security frameworks such as NIST 800-53, CMS ARC-AMPE, and IRS Pub 1075 and HIPAA
• Experience working in at least two security domains, including: Security & Risk Management, Security Architecture & Engineering, Security Assessment & Testing, Security Operations
• Excellent oral and written communication skills
• Ability to work within a team
• Ability to meet shifting deadlines
• Ability to work within a defined budget
• Preferred Qualifications: Experience supporting government or healthcare systems
• Experience supporting Vermont Health Connect (VHC) or IE&E programs
• Experience with audit and regulatory compliance
• Familiarity with HIPAA, CMS, and IRS security requirements
• Specific Skills: Security frameworks (NIST 800-53, CMS ARC-AMPE, IRS Pub 1075, HIPAA)
• Risk assessments, security controls & compliance gap analysis
• Audit support & compliance reporting
• Security documentation (SSP, POA&M)
• Vendor & third-party security review
Benefits:
• Fully Remote - US