Description
Job Description
Our client is seeking Information Security Analyst
Under limited supervision, the Information Security Analyst:
Assists in planning, directing, and coordinating agency activities, specifically relative to Information Security Assists in developing and enforcing the organization's security policies, standards, and guidelines, security awareness, security information portion of the business continuity and disaster recovery plans, and all industry and government compliance issues Assists in incorporating the design, deployment, management, control, and updating of platform and user specific security policies on a diverse range of internal hardware platforms supporting various software and operating systems Conducts risk management analysis to identify areas of risk and to develop security measures to prevent losses Monitors use of data files and regulates access to safeguard information in computer files Works with business owners, IT managers, staff, and vendors in order to provide timely and efficient IT coordination of security services to meet agency needs Create reports on status of agency information security programs and projects, as required Communicates with senior executives through oral and written reports and presentations, as required Develops and implements IT system security plans, projects and initiatives Plans, implements, manages, and coordinates security measures and controls for information systems to regulate access to computer data and prevent unauthorized modification, destruction, or disclosure of information Serves as Subject Matter Expert (SME) along with or in absence of the Senior Agency Information Security Office representing the agency on all issues relating to information security, as required Performs other professional responsibilities as assigned by supervisorRequired qualification:
Bachelor's degree from an accredited college or university in information technology, computer science, information assurance or a related field and six (6) years of information technology experience, three of which were in information security or information assurance
Preferred qualification:
Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) is a plus
Demonstrate knowledge of network, operating system, database and application security
Experience implementing and complying with Federal and State Laws
Experience in Cloud-based solutions and environments
Knowledge of current and emerging (Next Gen) Information Security Technologies and Practices
Working knowledge of NIST 800-53 and/or CMS MARS-E 2.0 is a plus