Sr. MARS-E Compliance Assessor

W

Wright Technical Services

Sr. MARS-E Compliance Assessor

Washington, DC
Full Time
Paid
  • Responsibilities

    Title: Sr. MARS-E Compliance Assessor
    Job Type: Part-Time, Contract – 3 Months
    Location: Fully Remote EST

    Job Summary
    Wright Technical Services is seeking a Senior Security Assessor to support a remote cybersecurity assessment project for a state Medicaid or Medicare system. This role focuses on evaluating security controls and reviewing artifacts to ensure compliance with MARS-E and NIST SP 800-53 standards. The assessor will analyze documentation such as SSPs, POA&Ms, and risk assessments, and provide clear findings and recommendations to support system compliance. Ideal candidates have experience with state or federal health systems, strong knowledge of PHI/PII protection, and relevant certifications such as CAP, CISSP, or CISA. This is a fully remote position and part of a collaborative, multi-stakeholder cybersecurity engagement.

    Qualifications

    • 5+ years of experience in cybersecurity compliance, auditing, or security assessments
    • Strong knowledge of MARS-E, NIST 800-53, and CMS security/privacy requirements
    • Experience working with state government systems (preferably Medicaid, Medicare, or Health Insurance Exchanges)
    • Familiarity with PHI, PII, and FTI data protection requirements
    • Ability to review technical artifacts and evaluate security controls in cloud-based and hybrid environments
    • Excellent documentation, analytical, and communication skills
    • Ability to work independently in a remote team environment

     

    Description and Responsibilities

    • Conduct independent security control assessments aligned with MARS-E and NIST SP 800-53 Rev. 4/5
    • Review and analyze security documentation, including System Security Plans (SSPs), POA&Ms, SARs, Risk Assessments, and Incident Response Plans
    • Validate the implementation and effectiveness of security controls across cloud and/or on-premise environments
    • Collaborate with system owners, developers, and other stakeholders to collect evidence and clarify control implementations
    • Document assessment findings and provide detailed recommendations for risk mitigation and compliance improvement
    • Support the preparation of Security Assessment Reports (SARs) and other deliverables for state and CMS review
    • Align assessments with federal and state guidelines, including FISMA, HIPAA, and CMS-specific requirements
    • Assist in continuous monitoring and remediation tracking as part of the larger security program
    • Participate in meetings, briefings, and walkthroughs to support audit readiness and compliance reporting
    • Stay current with evolving federal and state cybersecurity policy requirements, particularly those impacting healthcare

     

    Eligibility: All applications current authorized to live and work in the United States on a Permanent basis are welcome to apply. Must be currently residing in the US. Sponsorship is not available for this position.

    Wright Technical Services and our client are Equal Opportunity Employers. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.