IT Security Specialist II - Compliance & Assessment Support presso GAMA-1 Technologies

• Execute test scripts for IT systems in accordance with federal standards, including A-123 and SP 800-53 controls.
• Gather and organize evidence to support audits, assessments, and compliance reviews.
• Maintain traceability matrices linking controls to testing results and remediation activities.
• Draft findings and observations for inclusion in reports to management and auditors.
• Track remediation actions, including follow-up verification and documentation of closure.
• Support the preparation of FISMA narratives and compliance reports.
• Collaborate with IT and security teams to ensure timely and effective remediation of identified issues.
• Maintain accurate documentation and records, adhering to federal policies and organizational standards.
• Stay current on federal IT compliance frameworks, internal controls, and auditing standards.

• Ensure adherence to organizational information security policies and procedures; actively participate in mandatory security awareness training; and manage confidential and sensitive information in accordance with company protocols and data protection standards.

• Bachelor’s degree in Engineering, Information Technology, Business, or a related field (or equivalent work experience).
• 2-4 years of experience in IT audit, assessment, or security compliance.
• Professional certificate CISA or working toward CISA is required.
• Basic knowledge of A-123 internal controls and federal cybersecurity compliance frameworks.
• Strong skills in Excel, documentation, and process tracking.
• Attention to detail, analytical thinking, and strong organizational skills.

• Professional certification Security+ is preferred.
• Familiarity with SP 800-53, FISMA, and federal audit processes.
• Experience maintaining traceability matrices, POA&Ms, or CSAM entries.
• Understanding of enterprise IT systems, including Windows or Linux platforms.

• In accordance with facility Special Security Requirements and Department of Justice (DOJ) policy, candidates must have legally resided in the United States for three of the past five years, worked for the U.S. Government or military overseas, or been a dependent of a U.S. Government or military employee serving overseas. Non-U.S. citizens must be from an allied nation as defined by the Office of Personnel Management. Employment is contingent upon successful completion of Bureau of Prisons investigative procedures, which may include NCIC and fingerprint checks, law enforcement and employment history verification, federal application/resume review, release of information, urinalysis, and, if applicable, a National Agency Check. No work may commence until all required background investigations and clearances have been fully adjudicated.

• This work will be performed primarily in a telework environment, with on-site duties required one day per week.

• Prolonged periods of sitting at a desk and working on a computer.
• Must be able to access and navigate each department at the organizations and client facilities.

• The employee is expected to demonstrate proficiency in all essential job functions, tools, and processes related to this position within the first 90 days of employment. This includes acquiring a thorough understanding of job-specific responsibilities, systems, and workflows as outlined during onboarding and training. Failure to meet this requirement may result in additional training, reassessment, or other actions as deemed necessary by management.

This base salary range represents a general guideline.  An individual’s base salary within that range is determined based on a variety of factors, including (without limitation) the scope, complexities, and responsibilities of the position, the government contract to which the position is assigned, geographic location, market conditions, and the candidate’s relevant experience, education, and skills.