Security Analyst - Consultant_ South Carolina 29201

FedTec Overview:

FedTec is a Woman-Owned Small Business with headquarters in Reston, VA. However, FedTec is more than just a company – we are a dedicated team of visionary individuals who understand the power of transformation. With our unwavering commitment to innovative technology and forward-focused methods, we empower government agencies to fulfill their missions successfully with our capabilities in Digital Transformation, and Cyber Security. Our strategy is rooted in in-depth advising and a unique shoulder-to-shoulder mission experience, all geared towards enabling our clients, their agencies, and every American to thrive. We use the same approach as our employees, building meaningful and lasting relationships to meet their evolving needs and help them grow. We are excited to welcome you to our family.

DESCRIPTION OF SERVICES:

When You Join FedTec, You Are Joining a Family! We take pride in our work and the true and transparent relationships we build with our employees and partners. We believe that positive energy attracts like-minded individuals, which is why we have such exceptional people on our team.

Just as you'd do for your own family, we prioritize your safety, health, and happiness. That's why we've created the FedTec Total Well-Being program, offering benefits like:

Comprehensive medical, dental, and vision plans. These plans encompass a range of beneficial features, such as Telehealth virtual care programs, and access to resources to support your physical and mental well-being.

Generous paid time off for relaxation and rejuvenation.

Financial security through 401k, company-paid short and long-term disability, life insurance, and additional voluntary coverage.

Support for your life and family with access to an Employee Assistance Program, Pet Insurance, and Prepaid Legal services.

Recognition and growth opportunities through our Rewards & Recognition and Learning & Development programs.

Our newest addition, the FedTec Fit Program

Security Analyst – Consultant (ISSO)

Job Type: Contract (12 months)
Location: Columbia, SC (Onsite, 5 days/week)
Openings: 2
Must be a South Carolina resident or willing to relocate at own expense

About the Role

We are seeking two experienced Senior Information System Security Officers (ISSOs) to support ongoing cybersecurity, risk, and compliance initiatives for a large state agency. The ISSOs will lead and mature security and compliance programs aligned with federal and state regulatory requirements including FISMA, NIST, CMS MARS-E, and HIPAA.

This is an excellent opportunity for professionals who thrive in complex, fast-paced environments and enjoy collaborating with diverse technical and business stakeholders.

Key Responsibilities

• Lead and support the development, implementation, and enhancement of agency-wide information security and compliance programs.
• Review and analyze system architecture, data flows, access models, and network configurations to provide security recommendations.
• Oversee development and maintenance of RMF/A&A documentation including SSPs, PIAs, ISAs, and CMAs.
• Conduct audits and assessments of internal systems and vendor/partner environments.
• Review security-related requests such as firewall rule changes, baseline deviations, and vulnerability management activities.
• Perform security and compliance evaluations of contracts, BAAs, Data Sharing Agreements, and other documentation.
• Serve as a primary point of contact during third-party audits and security assessments.
• Work closely with leadership, technical teams, and vendors to drive remediation and security improvements.
• Document and track findings using eGRC and workflow systems such as Archer, Bizagi, Atlassian, and Microsoft Office tools.

Required Skills & Experience

• 5+ years’ experience in IT security or auditing across Windows, Linux, databases, networking, and web applications.
• Strong working knowledge of FISMA, NIST, CMS MARS-E, and HIPAA Security/Privacy.
• Prior experience working in a FISMA-compliant environment.
• Hands-on experience with one or more eGRC platforms (Archer preferred).
• Experience in Health IT environments.
• Information security certification required: ISC², ISACA, SANS GIAC, or equivalent.
• Ability to work independently and in collaborative team environments.
• Strong communication skills with the ability to engage both technical and non-technical audiences.
• Excellent organizational, documentation, and multitasking abilities.
• Proficiency in Microsoft Word, Excel, PowerPoint, and Visio.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or related technical field (or 10+ years of relevant experience).
• Experience with ITIL, specifically within Information Security Management.
• Experience integrating RMF/A&A tasks into the SDLC.
• Knowledge of cloud security and vendor management.
• Familiarity with Archer, SIEM tools, IAM solutions, Linux/Windows servers, and network security technologies.

Job Types: Full-time, Contract

Pay: $93,653.07 - $112,786.49 per year

Work Location: In person