Information Security Analyst

SYSTEMTEC is seeking a Information Security Analyst for a hybrid opportunity for candidates in Columbia, SC. The Candidate will support enterprise-wide information security compliance initiatives by assisting organizations with security program implementation, compliance assessments, and documentation efforts. This role requires extensive experience in information security governance, risk, and compliance, along with the ability to collaborate with technical and business stakeholders to evaluate security controls and ensure adherence to established standards.

Required Qualifications for the Information Security Analyst:

• Applicants must be authorized to work for any employer in the U.S. We are unable to provide sponsorship or work with Third-Party agencies.
• Bachelor's degree from an accredited institution; degree must be completed and verifiable.
• 10+ years of experience in information security, cybersecurity compliance, risk management, or related disciplines.
• 2+ years of experience conducting security audits or serving as an Information System Security Officer (ISSO) supporting audit and compliance activities.
• Strong working knowledge of NIST 800-53 security controls and compliance frameworks.
• Experience developing, managing, and tracking Plans of Action & Milestones (POA&M) and/or Corrective Action Plans (CAP).
• Minimum 3 years of experience utilizing Governance, Risk, and Compliance (GRC) platforms such as Archer or similar tools.
• Demonstrated experience interviewing technical and business stakeholders to gather information and assess security processes.
• Excellent written and verbal communication skills, including documentation development and stakeholder engagement.
• Ability to manage multiple compliance initiatives simultaneously while maintaining strong attention to detail.

Preferred Skills/Experience of the Information Security Analyst:

• Experience developing Information Security Plans (ISP) or System Security Plans (SSP).
• Knowledge of regulatory and compliance frameworks such as IRS 1075, HIPAA, CJIS, MARS-E, and PCI-DSS.
• Experience supporting government, public sector, or highly regulated environments.
• Professional certifications such as CISA, GSLC, CISSP, or equivalent credentials.
• Experience evaluating organizational processes and recommending security and compliance improvements.

Responsibilities of the Information Security Analyst:

• Conduct interviews with business and technical stakeholders to evaluate security processes, controls, and compliance activities.
• Develop, monitor, and report on information security implementation plans and remediation efforts.
• Review policies, procedures, and supporting documentation to assess alignment with established security requirements.
• Document findings, recommendations, and process information gathered through interviews and assessments.
• Perform compliance reviews to ensure security controls are implemented effectively and progress toward compliance objectives is achieved.
• Provide guidance and support to stakeholders regarding information security program implementation and continuous improvement efforts.

Work Location: Primarily remote position with periodic onsite collaboration required. Preference will be given to candidates located within South Carolina. Initial contract term of approximately 12 months with potential extension based on project needs and performance.

Compensation / Benefits:
Full-Time Employment with SYSTEMTEC means a competitive salary + paid OT, PTO, holidays, health, dental, disability, and life coverage, 401K, tuition reimbursement and more

***Please note: SYSTEMTEC is not set up to employ workers in the states of California, New York, and New Jersey.***