EugeneRecruiter Since 2001
the smart solution for Eugene jobs

Senior Security Compliance Engineer

Company: QTC Management, Inc.
Location: Remote
Posted on: November 24, 2022

Job Description:

Are you an experienced Security Compliance Engineer looking to use your talents to make a difference?
At QTC, Security Compliance Engineers work in an environment that is innovative and self-governed. We create and apply new technologies in a team environment that is fun, creative and supportive. - -
In this role, you will evaluate the design and effectiveness of IT controls based upon industry best-practice models (e.g. COBIT, ITIL, FISMA, NIST, OMB, etc.) in accordance with compliance requirements, and provides a systematic, disciplined approach to the analysis of operational business and governance processes to conform to standards and regulations.
Remote work allowed with a preference for candidates located near San Dimas, CA; San Antonio, TX; Nashville, TN; and Philadelphia, PA.
QTC is the nation's largest provider of disability and occupational health examination services. We are PASSIONATE about our country's veterans, UNITED as a team and INSPIRED to make a difference.
To provide high-quality, timely, and customer-focused medical examination service solutions, we honor our core values of integrity, innovation, agility, collaboration, inclusion and commitment. We celebrate diverse thinking and welcome contributions from all.
We offer meaningful and engaging careers to support you and your career goals, all while nurturing a healthy work-life balance, and we are proud to provide an employment package that attracts, develops and retains the best talent:


  • Competitive compensation and quarterly bonuses
  • Tuition reimbursement
  • A 50% company match of your pre- and post-tax contributions up to 6% of your salary, including immediate vesting of company contributions
  • Generous paid time off (minimum of 14 days/year), as well as 9 paid holidays
  • Access to flexible benefits, including health and wellness programs, long and short term disability, an employee assistance program, employee referral bonuses, credit union access and flexible spending accounts
  • An inclusive and ethical work place

    What you'll get to do:

    • Assist in the analysis and definition of security requirements
    • Assist with certifications and accreditation reviews, security test and evaluations and drafting associated reports
    • Coordinate compliance remediation activities and maintains accurate list of open and close compliance issues for the organization
    • Coordinate all internal (e.g. Leidos internal audits) and external audit events (e.g. HIPAA, NIST, SOX, , Authorization To Operate (ATO) with clients, etc.), including discovery, sample delivery, management response, and remediation activities for all audits
    • Work with Leidos Security team to conduct, report, and remediate findings from Intrusion Detection and other vulnerability scans
    • Review infrastructure and application architecture for security and compliance
    • Lead short-term projects that interact with multiple departmental teams
    • Perform regulation and standard gap analysis and prepares audit reports
    • Facilitate customer request, information gathering, and prepares response
    • Develop mapping for controls to a Unified Control Framework
    • Perform other duties and responsibilities as assigned

      -
      Position Requirements: -

      • Bachelors degree in a related discipline.
      • 14+ years working in compliance, information security, or internal audit covering one or more of the following: HIPAA, NIST 800-53, and Sarbanes-Oxley (Additional years of experience may be considered in lieu of degree)
      • CISSP certification (CISM, CRISC, or GCEIT preferred)
      • Working experience with HIPAA and one or more of the following standards and regulations: - NIST 800-53, SOX, PCI
      • Experience using security tools such as Nessus, NMAP, Rapid7, and Qualys
      • Ability to pass National Agency Check with Inquiries (NACI) background investigation

        -
        This job description supersedes all prior job descriptions and is intended to describe the general content and essential requirements for the position listed above. It is not to be construed as an exhaustive statement of requirements, duties and responsibilities. Management reserves the right to add or change the duties of this position as required at any time. -
        QTC Management Inc. is a VEVRAA Federal contractor and an Equal Opportunity Employer. The company has an ongoing commitment to affirmative action and the creation of a workplace free of discrimination, harassment and retaliation. The company recruits, hires, trains, and promotes individuals in all job titles without regard to race, color, creed, religion, ancestry, national origin, age, sex, pregnancy, sexual orientation, gender identity, genetic information, people with disabilities protected under law, and protected veteran status.
        -EducationPreferred
        • Bachelors or better in Instructional TechnologyLicenses & CertificationsPreferred
          • Certified IS Manager
          • Certified IS AuditorSkillsPreferred
            • Project ManagementBehaviorsPreferred
              • Detail Oriented: Capable of carrying out a given task with all details necessary to get the task done wellMotivationsPreferred
                • Self-Starter: Inspired to perform without outside helpEqual Opportunity Employer/Protected Veterans/Individuals with DisabilitiesThe contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Keywords: QTC Management, Inc., Eugene , Senior Security Compliance Engineer, Accounting, Auditing , Remote, Oregon

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Oregon jobs by following @recnetOR on Twitter!

Eugene RSS job feeds