HHS GRC Analyst
Share
Job Location:
Rockville, MD - USA
Monthly Salary:
Not Disclosed
Posted on:
15 hours ago
Vacancies:
1 Vacancy
Job Summary
cFocus Software seeks a GRC Analyst to join our program supporting the Department of Health and Human Services (HHS) This position is remote. This position requires the ability a Public Trust clearance.
Qualifications:
Qualifications:
- Bachelors degree in Information Technology Cybersecurity or related discipline.
- Minimum 5 years of experience supporting federal GRC or RMF programs.
- Hands-on experience administering eGRC platforms (e.g. RSA Archer).
- Strong knowledge of FISMA RMF NIST SP 800-37 and NIST SP 800-53.
- Experience with OSCAL automation and system integrations preferred.
- Strong analytical problem-solving and documentation skills.
- Serve as the primary SME for the HRSA eGRC solution supporting all tool functionality.
- Create configure and maintain records for FISMA systems applications and components.
- Monitor eGRC data to ensure completeness accuracy and compliance with HRSA requirements.
- Provision new user accounts manage permissions and enforce role-based access controls.
- Provide training guidance and day-to-day user support for federal and contractor users.
- Troubleshoot system issues and restore tool functionality in coordination with vendors and HRSA IT.
- Develop and implement enhancements to eGRC capabilities including:
- Automated POA&M tracking
- Integration with vulnerability management and security tools
- OSCAL import/export functionality
- Continuous monitoring dashboards
- AI-assisted control mapping and analysis
- Develop analytics and reporting capabilities to identify trends predict authorization risks and support risk-based decision making.
- Support configuration management patching and upgrades of the eGRC platform in accordance with HHS and vendor standards.
- Follow HRSA change management processes including preparation of technical implementation plans.
- Maintain an SLA of responding to change requests and tickets within two (2) business days.
- Support contingency planning continuity of operations and participation in contingency tests.
- Coordinate with HRSA Hosting Network Operations ISSOs and RMF teams to support tool integrations and operational requirements.
- Develop dashboards metrics and reports supporting CPIC RMF and executive reporting.
- Support audits assessments and data calls by providing accurate system and risk data.
- Collaborate with ISSOs Risk Analysts and Program Management staff to ensure alignment between system documentation and eGRC records.
- Document SOPs workflows and user guides for eGRC operations and enhancements.
Required Experience:
Senior IC
Key Skills
- ArcGIS
- Intelligence Community Experience
- GIS
- Python
- Computer Networking
- Data Collection
- Intelligence Experience
- R
- Relational Databases
- Analysis Skills
- Data Management
- Application Development
About Company
Our exclusive ATO as a Serviceā¢ software & expert services automate FISMA RMF & FedRAMP compliance.
