Compliance Engineer Job Listing at SAIC in REMOTE WORK, DC (Job ID 2406627)

Description

Description

SAIC is seeking a Sr. Compliance Engineer to join to join our dynamic, cloud based, team supporting the Centers for Medicare and Medicaid Services (CMS.) As a Sr. Compliance Engineer you will provide risk-based assessments for cloud and on-premise implementations while keeping our client up to date with the latest cyber security doctrine.

Responsibilities: 

• Prepare documentation including Security Impact Analysis (SIA), System Security Plans (SSP), Information Contingency Plan (ISCP), and necessary security documentation.
• Apply technical implementation skills to determine the risk of XaaS, developed tools, and combined implementations.
• Provide detailed risk and technical assessments to identify possible vulnerabilities and non-compliant implementations with actionable recommendations.
• Responsible for developing, deploying, and maintaining automated compliance monitoring tools such as AWS Audit Manger.
• Support program leadership and CMS ISSOs with Plan of Action and Milestones (POA&Ms) management and remediation to ensure compliance with government security policies and procedures.
• Create and maintain technical documentation that communicates policies, procedures, and standards aligned with compliance standards such as CMS ARS, NIST 800-53, FISMA, and/or DISA level security policies.

Qualifications

Required Education and Experience:

• Bachelor's Degree in computer science, systems engineering, or related technical discipline and 5+ years of related experience required; 8 years of experience highly preferred. Additional 4+ additional years of experience can be substituted in lieu of education.
• Must be able to obtain and maintain a Public Trust security clearance based on the Department of HHS guidelines. 
  • Must have lived in the United States for 3 out of the last 5 years 

Required Skills:

• Knowledgeable with cloud environments; AWS highly preferred.
• Strong verbal and written communication.
• Experience applying ARS, RMF, NIST 800-53, DISA, and/or Government IT security frameworks.
• Knowledge of IT audits, including conducting technical security compliance tests and vulnerability assessments.
• Knowledge of Government security requirements for access control.
• Understanding of Technical Writing 

Desired Skills:

• Experience with AWS Audit Manager
• Exposure to Artificial Intelligence (AI) 
• Prior professional services or federal consulting experience.
• Certifications (e.g., CompTIA Security+, CEH, CISSP).
• ISSO experience.

Target salary range: $115,001 - $125,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

 Apply on company website