System Analyst 2 -CMS MARS E v2.2 , SSP development

Job Summary: The Security Engineer will project work by leading security governance, compliance, and risk management activities, with a strong focus on System Security & Privacy Plans (SSP/SSPP). This role bridges technical security operations and regulatory compliance, ensuring audit readiness, effective vulnerability remediation, and secure delivery of public-facing services across complex, multi-platform environments. • Lead end to end System Security & Privacy Plan (SSP/SSPP) development, maintenance, and updates for enterprise systems • Drive remediation activities through POA&M management, ensuring timely closure of compliance gaps • Translate penetration testing and vulnerability findings into actionable remediation work items (EPICs/user stories) • Coordinate with application, infrastructure, and security teams to validate remediation through re-testing and evidence • Oversee risk-based vulnerability management, including prioritization and SLA-driven remediation • Provide governance oversight for endpoint protection, web application security, and cloud security controls • Produce assessor ready documentation, including configurations, monitoring evidence, approvals, and incident traceability • Support continuous audit readiness and reduce repeat findings through disciplined governance and documentation practices.