Job ID: JOB_ID_2089
Role Overview
We are seeking a highly skilled System Analyst 2 with a specialized focus on Security Governance, Risk, and Compliance (GRC) to join our enterprise team in Austin, Texas. This hybrid role requires a professional who can bridge the gap between technical security operations and regulatory compliance, ensuring that our systems are not only secure but also fully audit-ready and compliant with federal and state frameworks.
Key Responsibilities
- Lead the end-to-end development, maintenance, and periodic updates of System Security & Privacy Plans (SSP/SSPP) for complex enterprise systems.
- Drive remediation activities through rigorous Plan of Action and Milestones (POA&M) management, ensuring all compliance gaps are closed within established timelines.
- Translate technical findings from penetration testing and vulnerability scans into actionable remediation work items, such as EPICs and user stories for development teams.
- Coordinate closely with application, infrastructure, and security teams to validate remediation efforts through re-testing and evidence collection.
- Oversee risk-based vulnerability management, including the prioritization of threats and ensuring SLA-driven remediation across the organization.
- Provide governance oversight for critical security controls, including endpoint protection, web application security, and cloud security environments.
- Produce assessor-ready documentation, including detailed configurations, monitoring evidence, approvals, and incident traceability reports.
- Support continuous audit readiness and work to reduce repeat findings through disciplined governance and documentation practices.
Technical Environment and Requirements
The ideal candidate will have over 12 years of experience in the IT sector with a deep focus on GRC, Enterprise Security Architecture, and Vulnerability Management. You must have at least 10 years of experience owning SSP development from start to finish and hands-on experience with CMS MARS-E v2.2 or comparable federal security frameworks. Expertise in NIST 800-53, NIST RMF, and privacy controls is essential. Furthermore, candidates should possess a strong understanding of Secure SDLC and DevSecOps practices to ensure security is integrated into the development lifecycle. This position is based in Austin, TX, and follows a hybrid schedule requiring onsite presence on Mondays and Thursdays.
Professional Skills
Beyond technical expertise, this role requires exceptional stakeholder management skills. You will be expected to communicate complex security issues to executive stakeholders and collaborate effectively across multi-vendor and multi-platform environments. A proven track record of improving compliance maturity and mentoring junior team members on security governance best practices is highly preferred.
Special Requirements
No OPT candidates; Local to Texas candidates only; Hybrid work model (3 days remote, 2 days onsite).
Compensation & Location
Salary: $145,000 – $195,000 per year (Estimated)
Location: Austin, TX
Recruiter / Company – Contact Information
Recruiter / Employer: AE Talents Inc
Email: erum@aetalentsgroup.com
Recruiter Notice:
To remove this job posting, please send an email from
erum@aetalentsgroup.com with the subject:
DELETE_JOB_ID_2089