QuidelOrthoRemote
Information Security Analyst
New Jersey, United States of America
Full Time
2 days ago
$100,000 - $130,000 USD
No Visa Sponsorship
Key skills
AWSAzureCloudCyber SecurityGoogle Cloud PlatformGCPGoogle CloudRisk ManagementCommunicationCloud Security
About this role
Role Overview
- Ensure compliance with DoD and VA cybersecurity requirements (e.g., RMF, NIST 800-53, FedRAMP where applicable)
- Support Authority to Operate (ATO) processes, including documentation, control implementation, and continuous monitoring
- Collaborate with product, engineering, IT, and compliance teams to integrate security controls into systems and services
- Conduct risk assessments, control testing, and gap analyses aligned with NIST, HIPAA, and other regulatory frameworks
- Maintain and update security policies, standards, and procedures to meet federal and enterprise requirements
- Assist in audit readiness and support internal/external audits (DoD, VA, HIPAA, as applicable)
- Monitor regulatory changes and assess impact on QuidelOrtho products and services
- Support third-party/vendor risk management, especially for federal-facing solutions
- Contribute to incident response, vulnerability management, and remediation tracking from a compliance perspective
- Provide security awareness and guidance to cross-functional teams on federal compliance expectations
- Perform other work-related duties as assigned.
Requirements
- Bachelor’s degree or equivalent in Information Security, Cybersecurity, Computer Science, Information Systems, or related field
- 2–4+ years of experience in Information Security, with a focus on GRC (Governance, Risk, and Compliance)
- Hands-on experience with federal security frameworks such as: NIST 800-53 / NIST CSF DoD RMF (Risk Management Framework) FedRAMP (preferred)
- Experience supporting ATO processes and working with federal agencies (DoD, VA, or similar)
- Familiarity with healthcare regulations such as HIPAA and handling sensitive health data
- Experience conducting risk assessments, control evaluations, and compliance gap analyses
- Understanding of cloud security concepts (AWS, Azure, or GCP) and their compliance implications
- Strong documentation skills, including SSPs, POA&Ms, and security artifacts
- Ability to work cross-functionally with technical and non-technical stakeholders
- Strong analytical, problem-solving, and communication skills.
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
Benefits
- medical, dental, vision, life, and disability insurance
- 401(k) plan
- employee assistance program
- Employee Stock Purchase Plan
- paid time off (including sick time)
- paid Holidays