Security Engineer – CMS MARS-E (GRC Focus)

TEKWings LLC

Austin, TX

Apply

JOB DETAILS

JOB TYPE

Full-time, Employee

SKILLS

Acquisitions Management, Application Programming Interface (API), Background Investigation, Business Analysis, Communication Skills, Computer Science, Enterprise Applications, Government Acquisitions, Information Technology & Information Systems, Integration Testing, Process Modeling, Quality Assurance, Software Design, Software Development, Systems Engineering, Systems Maintenance, Team Player, Test Case, Unit Test

LOCATION

Austin, TX

POSTED

8 days ago

Security Engineer – CMS MARS-E (GRC Focus)

Location: Austin, Texas (Hybrid – 3 Days Remote / 2 Days Onsite)
Client: State of Texas
Local Candidates Only: Within 50-mile radius of Austin, TX
Experience Required: 12+ Years
Prior State Agency Experience: Not Required

Key Responsibilities

Lead end-to-end development, maintenance, and updates of System Security & Privacy Plans (SSP/SSPP)
Drive remediation efforts through effective POA&M creation, tracking, and closure management
Translate penetration testing and vulnerability findings into actionable remediation EPICs and user stories
Coordinate with application, infrastructure, and security teams to validate remediation through re-testing and evidence collection
Manage risk-based vulnerability prioritization aligned with SLA-driven remediation
Provide governance oversight for:
- Endpoint Protection
- Web Application Security
- Cloud & Hybrid Security Controls
Prepare assessor-ready documentation including:
- Configuration baselines
- Monitoring evidence
- Approvals and audit trails
- Incident traceability
Support continuous audit readiness and reduce repeat audit findings

Required Skills & Qualifications

12+ years of enterprise security experience
Deep expertise in:
- Governance, Risk & Compliance (GRC)
- Enterprise Security Architecture
- Vulnerability Management & Penetration Testing
- Cloud Security & Hybrid Environments
Proven ownership of SSP development end-to-end
Hands-on experience with CMS MARS-E v2.2 or comparable federal/state security frameworks
Strong knowledge of:
- NIST 800-53
- NIST Risk Management Framework (RMF)
- Privacy Controls
Experience in:
- Control implementation documentation
- Audit evidence validation
- POA&M lifecycle management
- Secure SDLC & DevSecOps
Strong stakeholder management across multi-vendor, multi-platform environments
Excellent written and verbal communication skills (Executive-level communication required)
Demonstrated ability to improve compliance maturity and reduce repeat audit findings

Preferred Qualifications

Experience supporting HHSC systems and SSP development
Prior experience in large-scale public sector or healthcare environments

Work Environment

Hybrid Schedule (3 Remote / 2 Onsite in Austin, TX)
Enterprise-level Security Governance Program
High-visibility compliance and audit-driven role

Security Engineer – CMS MARS-E (GRC Focus)

TEKWings LLC

Austin, TX

Security Engineer – CMS MARS-E (GRC Focus)

Key Responsibilities

Required Skills & Qualifications

Preferred Qualifications

Work Environment

About the Company

TEKWings LLC