Information Privacy and Security Advisor

Job description

Responsibilities Peraton is seeking a highly skilled Information Privacy and Security Engineer to lead security engineering, governance, risk and compliance activities for a mission‑critical systems contract with the federal government. This role oversees day‑to‑day operational security, ensures adherence to federal cybersecurity and privacy requirements, and drives continuous security improvement across O&M and system enhancement workstreams. The manager partners with program leadership and operations teams to maintain Authority to Operate (ATO), safeguard Protected Health Information (PHI), and deliver reliable, compliant services at scale. Duties and Responsibilities: - Own the security architecture and control implementation across application, infrastructure, and cloud layers, aligned with NIST SP 800‑53 control baselines, FIPS 199/200 categorization, and CMS security policies. - Drive vulnerability management (scan triage, remediation SLAs, patch governance) and configuration baselines (e.g., DISA STIGs, CIS Benchmarks, SCAP). - Compliance, Risk Management Framework (RMF) and Audit Readiness - Lead end‑to‑end Risk Management Framework (RMF) activities (NIST SP 800‑37), includ...