Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team. Job Title: Systems Analyst 3. Location: Austin, TX. I. Description of Services:
- Client requires the services of Systems Analyst 3, hereafter referred to as Candidate(s), who meets the general qualifications of Systems Analyst 3, Applications/Software Development and the specifications outlined in this document for the client.
- All work products resulting from the project shall be considered "works made for hire" and are the property of the client and may include pre-selection requirements that potential Vendors (and their Candidates) submit to and satisfy criminal background checks as authorized by Texas law. client will pay no fees for interviews or discussions, which occur during the process of selecting a Candidate(s).
- The Security Engineer will project work by leading security governance, compliance, and risk management activities, with a strong focus on System Security & Privacy Plans (SSP/SSPP).
This role bridges technical security operations and regulatory compliance, ensuring audit readiness, effective vulnerability remediation, and secure delivery of public-facing services across complex, multi-platform environments.
- Lead end to end System Security & Privacy Plan (SSP/SSPP) development, maintenance, and updates for enterprise systems.
- Drive remediation activities through POA&M management, ensuring timely closure of compliance gaps.
- Translate penetration testing and vulnerability findings into actionable remediation work items (EPICs/user stories).
- Coordinate with application, infrastructure, and security teams to validate remediation through re-testing and evidence.
- Oversee risk-based vulnerability management, including prioritization and SLA-driven remediation.
- Provide governance oversight for endpoint protection, web application security, and cloud security controls.
- Produce assessor ready documentation, including configurations, monitoring evidence, approvals, and incident traceability.
- Support continuous audit readiness and reduce repeat findings through disciplined governance and documentation practices.
II. Candidate Skills and Qualifications:
Minimum Requirements:
- 12 Years Required: Deep focus on: Governance, Risk, and Compliance (GRC), Enterprise Security and Security Architecture, Vulnerability Management and Penetration Testing, Cloud Security and hybrid environments.
- 10 Years Required: Proven experience owning SSP development end to end.
- 10 Years Required: Hands on experience with CMS MARS E v2.2 or comparable federal/state security frameworks.
- 10 Years Required: Strong expertise in: Control implementation documentation, Audit evidence collection and validation, POA&M creation, tracking, and remediation management.
- 8 Years Required: Ability to translate technical security issues into compliance aligned remediation actions.
- 8 Years Required: Strong stakeholder management skills across security, infrastructure, and application teams.
- 8 Years Required: Excellent written and verbal communication skills, particularly for executive stakeholders.
- 8 Years Required: Knowledge of NIST 800 53, NIST RMF, and privacy controls.
- 8 Years Required: Knowledge of Secure SDLC and DevSecOps practices.
- 5 Years Preferred: Experience operating in multi-vendor, multi-platform environments.
- 5 Years Preferred: Demonstrated abilities to reduce repeat audit findings and improve compliance maturity.
- 5 Years Preferred: Experience mentoring or guiding teams on security governance best practices.
- 1 Year Preferred: Experience supporting Client systems, including SSP development and compliance.
Ampcus is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.
|
Ampcus, Inc
Feb 26, 2026