Essential Duties and Responsibilities:

- Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team.

- Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications.

- Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility.

- Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements.

- Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions.

- Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team.

- Promotion of Information Security awareness through various communication channels within the organization.

- Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets.

Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements.Perform risk assessments using vulnerability management and application security testing reports.Initiate formal security exception process, when required.Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements

- Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required.

- Bachelor’s degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience.

US Citizenship is REQUIRED per contract/client.At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISMExperience with NIST 800-53 is REQUIREDAbility to travel nationally up to 10% is REQUIREDHIPAA experience is preferredExperience with Cloud providers, such as Azure and AWSKnowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSDemonstrates excellent interpersonal, presentation and verbal/written communication skillsDemonstrates strong customer service skillsAbility to communicate technical information to non-technical staffAbility to work collaboratively with a broad range of staff (including analysts, engineers and leadership)Proficiency with Microsoft OfficeSmartSheet experience is a plusAbility to perform comfortably in a fast-paced, deadline-oriented work environmentAbility to organize and execute complex tasksAbility to work as a team member as well as independently
EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We’re proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.