Business Analyst
vTech Solution - Washington, DC
Apply NowJob Description
Job Summary: The Business Analyst role involves IT governance and compliance responsibilities, including maintaining FISMA documentation, coordinating ATO processes, and drafting Privacy Impact Assessments. The role also includes business analysis tasks such as gathering requirements from stakeholders, translating them into specifications, and supporting user acceptance testing. This position requires strong communication skills and the ability to work with both technical and non-technical staff. Location:District of Columbia, United States Responsibilities: - Maintain and update FISMA documentation for IT systems. - Coordinate the Authority to Operate (ATO) process. - Draft, review, and maintain Privacy Impact Assessments (PIAs). - Maintain the IT system inventory. - Support data governance and privacy obligations. - Serve as a point of contact for security, privacy, and compliance matters. - Identify and escalate compliance gaps. - Prepare documentation for reviews, assessments, and audits. - Elicit, refine, and document business requirements for applications. - Translate stakeholder needs into structured requirements and specifications. - Develop and maintain process flow diagrams and use cases. - Help prioritize and scope requirements. - Contribute to user acceptance testing. - Bridge communication between developers and stakeholders. Required Skills & Certifications: - US citizenship. - Experience with FISMA compliance documentation. - Experience drafting or maintaining Privacy Impact Assessments. - Familiarity with NIST frameworks (NIST SP 800-53 and NIST SP 800-37). - Experience supporting or coordinating ATO processes. - Experience with IT system inventory maintenance and data governance. - Experience in business requirements gathering and documentation. - Ability to work with senior subject matter experts. - Strong written communication skills. Preferred Skills & Certifications: - Prior experience in a U.S. federal government environment. - Familiarity with privacy and information security frameworks. - Experience with process modeling tools (Visio, Lucidchart, etc.). - Familiarity with Microsoft Power Platform applications or SharePoint Online. - Experience coordinating UAT efforts with non-technical business users. - Coursework or certification in information security, privacy, or records management (CIPP, CISSP, CRM, or equivalent). Special Considerations: - On-site presence is required during the initial onboarding period (6-8 weeks). - Transition to full-time teleworking following successful onboarding. Scheduling: - Full-time position.
Created: 2026-03-10