Job Title: Senior Security Engineers / Compliance Analysts
Location: Remote
Duration: 6+ Months
Job Description:
Senior Security Engineers / Compliance Analysts to build out and defend our security authorization program for State and Federal clients.
You will work hands-on with engineering teams to map, implement, and validate technical security controls that satisfy strict contractual and regulatory frameworks.
This role requires a balance of deep technical security knowledge and structured compliance writing.
Key Responsibilities Authorization Artifacts:
Author and maintain high-quality System Security Plans (SSPs), architectural diagrams, and security control narratives.
Boundary Definition: Lead exercises to cleanly define and document System Boundaries for multi-tenant and hybrid-cloud environments.
Continuous Monitoring & POAMs: Own the lifecycle of vulnerability remediation by managing and maintaining Plans of Action and Milestones (POAMs) and regulatory reporting.
Controls Implementation: Collaborate directly with engineering/DevOps squads to implement technical controls (encryption, identity, logging) meeting exact regulatory requirements.
Required Qualifications Federal Framework Mastery:
8+ years of direct experience with government security compliance programs, specifically FedRAMP, FISMA, or ARC-AMPE.
Healthcare Security: Deep, practical familiarity with implementing the HIPAA Security Rule within commercial technology environments.
Technical Environment:
Strong understanding of security controls within modern multi-tenant cloud or hybrid structures. Experience in Pharmacy/PBM data compliance is a major plus