• Testing Analysis Documentation Skills Consultant

    COOLSOFT (Richmond, VA)


    Testing Analysis Documentation Skills Consultant

     

    (Jobs in Richmond, VA)

     

    Requirement id 154370

     

    Job title Consultant

     

    Job location in Richmond, VA

     

    Skills required Information Security, NIST 800-53, Security Framework, Testing Analysis Documentation Skills

     

    Open Date 22-Jul-2025

     

    Close Date

     

    Job type Contract

     

    Duration 11 Months

     

    Compensation DOE

     

    Status requirement ---

     

    Job interview type ---

     

    Email Recruiter:coolsoft

     

    Job Description Consultant: Information Security, NIST 800-53, Security Framework, Testing Analysis Documentation Skills

     

    Start date : 08/12/2025

     

    End Date : 07/11/2026

     

    Submission deadline : 07/28/2025

     

    Client Info : SCC

    Note:

    * Agency Interview Type : Both Web Cam and In Person Interview

    * Hybrid

    * Pls note: The manager will conduct first round interviews on TEAMS and then require the TOP candidate in for a follow up IN PERSON (2nd) interview.

    * SCCs Health Benefit Exchange division is seeking an experienced IT Auditor

     

    ON SITE REQUIRED: Tuesday and Thursday each week

     

    Parking not provided for contractors

    Description :

    ABOUT THE ROLE

    The SCCs Health Benefit Exchange division is seeking an experienced IT auditor to support our transition to a new security standard and strengthen our third-party risk management program. This role will help interpret and implement updated security requirements, conduct audits and assessments of both internal processes and external vendors and partners evaluating controls and recommending improvements.

    Responsibilities Include:

    Assess current security controls and processes against new CMS, IRS, and SCC security standards.

     

    Identify gaps and recommend remediation steps to achieve and maintain compliance.

     

    Plan, lead, and execute development and updates to policies, procedures, and documentation to reflect requirements.

     

    Design, implement, and train on the process for assessing partners and vendors, ensuring alignment with security standards.

     

    Develop assessment tools, workflows, and scoring model to evaluate and measure the effectiveness and compliance of vendor and partner security controls.

     

    Evaluate the security posture of vendors and partners to ensure information security contractual, information sharing, and data sharing agreement requirements are met.

     

    Test the effectiveness of operational and management controls using interviews, document reviews, and observation.

     

    Analyze, assess, report, and present on audit findings, risk exposure, and recommendations.

     

    Support information security continuous monitoring and incident response programs.

     

    Perform related work as required.

     

    Call502-379-4456 Ext 100for more details. Please provide Requirement id: 154370 while calling.

     

    Executive Order 11246, Section 503 & VEVRAA EOE, including disability/vets