Technology Security Analyst
Information Technology Security Analyst needed. We are seeking an experience Analyst to conduct work that involves providing expert advice on addressing on information security issues with the development, review, implementation, maintenance and communicate Information Technology security policies, standards, best practices, guidance and procedures.
Essential Job Functions
-Provides support in the development, review, implementation, maintenance and communicates Information Technology security policies, standards, best practices, guidance and procedures;
-Develops policy awareness efforts and materials for distribution to the user community;
-Develops security related policy briefings, presentations, project plans, communications, correspondence, reports, policy issuance and white papers for distribution to organization;
-Creates a metrics framework that effectively measures compliance with information security policies;
-Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, published test results, and makes changes necessary to address deficiencies;
-Reviews, updates, or creates documents needed to close findings, execute associated actions and coordination. Conducts coordination and approvals from various organizations;
-Facilitates security management oversight and technical evaluation of system infrastructure to provide relevant solution through timely, effective analysis of security policy process and emerging technology in accordance with the Risk Management Framework system lifecycle;
-Serves as a conduit for complete problem solving of new services addressing changing business models that require integration of security processes, technology, and resources across the network infrastructure to facilitate new policy requirements;
-Evaluates and recommends security requirements relative to capabilities of new information technology and interpret patterns of non-compliance to determine their impact, level of risk and overall effectiveness of Security program;
-Establishes and maintains positive and productive working relationships between Information Technology staff and business groups; and
-Completes Security Authorization packages, to include system security plans, governance assessment, security assessment reports, summaries and a continuous monitoring plan/assessment schedule, and presents executive briefing to Technology Security Manager.
-Work experience and years of relevant experience in functional responsibility in are Information Security;
-Experience with regulatory compliance and information security management frameworks and their requirements and impact on system security (National Institutes of Standards and Technology NIST SP800-53, NIST CSF, COBIT, ISO/IEC 2700X, etc.);
-Well-versed in risk management and must have experience working with SDLC, and performing security tasks throughout;
-Ability to plan and execute projects individually and as part of a team;
-Effective problem solving and analytical skills; and Excellent oral and written communication skills.
Posted On: Monday, May 15, 2017