Information Security Analyst
The Information Security Analyst 3 performs advanced formation security analysis work.
Under the supervision of the CISO, work includes overseeing, planning, directing, implementing, and monitoring security measures.
Candidate MUST be local to Metro Atlanta.
Hybrid/Telework Tax Clearance Letter is required to be considered for this position.
MUST NEED CERTIFICATIONS (Possess one or more current industry certifications relevant to the job e.
g.
, Security+, CISSP, CISM, C-RISC, CISA, SANS certifications).
Job
Summary:
The Information Security Analyst 3 performs advanced formation security analysis work.
Under the supervision of the CISO, work includes overseeing, planning, directing, implementing, and monitoring security measures.
coordinates agency activities in Information Technology, specifically in Information Security.
Develops and enforces the organization's security policies and procedures, security awareness program, the information security portion of the business continuity and disaster recovery plans, and all industry and government compliance issues.
Incorporates the design of and develops security procedures to allow the deployment, management, and updating of platform and user-specific security policies on a diverse range of internal hardware platforms supporting various software operating systems.
Includes an additional focus on protecting Agency data by performing threat and incident detection, and incident response.
Works under minimal direct supervision and may supervise the work of others.
Primary Duties & Job
Responsibilities:
Completes task designed to ensure security of the Agency's systems and information assets through confidentiality, integrity & availability.
Implements confidentiality measures that protects against unauthorized access, modification, or destruction and helps to develop IT security policies and standards to support the security objectives.
Develops and enforces the organization's security policies and procedures, security awareness program, the information security portion of the business continuity and disaster recovery plans, and all industry and government compliance issues.
Works with end users to determine needs of individual divisions and offices within the department of those risks.
Mitigations Conducts Risk Management analysis to identify areas of risk and develop security measures to prevent loss and assist in the Participates in training, self-study, and statewide initiatives on security standards and best practices to serve as a valuable go-to security subject matter expert for the Agency.
Actively monitors the Agency's infrastructure and systems for security threats.
Actively manage various security programs/platforms, monitors the use of data files, and regulates access to safeguard agency information in those computer files.
Works with business owners, IT managers, Agency Staff, and vendors to provide timely and efficient IT coordination of security services to meet Agency business needs.
Creates reports on status of Agency information security programs and projects and communicate reports to senior management and the leadership teams.
Develops, delivers, and maintains security standards, system security plans, best security and operations practices, architecture, and systems.
Implement IT system security plans, projects, and other initiatives.
.
Mitigations Team on matters concerning the Agency's security status & posture.
Assists in Information Security Investigations, Threat Assessments and InfoSecReports directly to the Assists with numerous Information Security tools and programs.
Qualifications:
Bachelor's degree in information technology, computer science, information assurance, or a related field from an accredited college or university AND Six years of information technology experience, Two years of which in information security or information assurance.
Hands on working experience with at least two or more of these security technologies (e.
g.
, Vulnerability Management, Penetration Testing, Email Security, EDR, MFA, SIEM, IPS, Firewalls).
Possess one or more current industry certifications relevant to the job e.
g.
, Security+, CISSP, CISM, C-RISC, CISA, SANS certifications.
Experience with security tools and technology, i.
e.
, FireEye (Trellix), Tenable.
io, Nessus, Splunk, SolarWinds, Varonis, GRC tools, CrowdStrike Falcon, LogRhythm, and policies management.
Knowledge & experience with cloud technologies:
Amazon Web Services (AWS), to include WatchGuard, GuardDuty, Identity & Access Management (IAM), Microsoft Azure.
Technical knowledge in endpoint security, VPN, Firewall, network monitoring, intrusion detection, web server security, and wireless security.
Practical experience in systems administration, vulnerability management, endpoint management, and email security operations and management.
Excellent analytical and critical thinking skills to identify possible threats.
Familiarity with IRS Publication 1075, NIST SP 800-53 Privacy Controls, NIST SP 800-63 Digital Identity Guidelines, NIST SP 800-88 Guidelines for Media Sanitization, NIST SP 800-18 System Security Plans (SSP), NIST SP 800-52, FIPS-140, NIST SP 800-61, NIST SP 800-83, other NIST SP Guidelines, etc.
, knowledge of NIST Frameworks, FISMA, CIS Controls, and the Criminal Justice Information Services Policy.
Progressive experience in information technology, incident response & incident reporting, technical support, cybersecurity, cryptography, and knowledge of data encryption techniques.
Ability to work independently and prioritize multiple projects in a highly dynamic environment.
Excellent communication and teamwork skills and demonstrated across broad group of technical and non-technical stakeholders.
Assist with Office of Information Security Risk Assessments, System Security Plans, and other reports required by the IRS Office of Safeguards, state audits, and other third-party assessors.
DOR will conduct a background check on all candidates considered for the position.
Individuals must be compliant with Georgia tax obligations.
Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired.
All employees will be fingerprinted.
Central Business Solutions, Inc(A Certified Minority Owned Organization) Checkout our excellent assessment tool:
http:
//www.
skillexam.
com/ /> Checkout our job board :
http:
//www.
job-360.
net/ Central Business Solutions, Inc 37600 Central Court Suite 214 Newark CA, 94560 Phone:
(833)247-8800 Fax:
(510)-740-3677 Web:
http:
//www.
cbsinfosys.
com Recommended Skills Amazon Web Services Analytical Architecture Assessments Auditing Business Continuity And Disaster Recovery Estimated Salary: $20 to $28 per hour based on qualifications.
Under the supervision of the CISO, work includes overseeing, planning, directing, implementing, and monitoring security measures.
Candidate MUST be local to Metro Atlanta.
Hybrid/Telework Tax Clearance Letter is required to be considered for this position.
MUST NEED CERTIFICATIONS (Possess one or more current industry certifications relevant to the job e.
g.
, Security+, CISSP, CISM, C-RISC, CISA, SANS certifications).
Job
Summary:
The Information Security Analyst 3 performs advanced formation security analysis work.
Under the supervision of the CISO, work includes overseeing, planning, directing, implementing, and monitoring security measures.
coordinates agency activities in Information Technology, specifically in Information Security.
Develops and enforces the organization's security policies and procedures, security awareness program, the information security portion of the business continuity and disaster recovery plans, and all industry and government compliance issues.
Incorporates the design of and develops security procedures to allow the deployment, management, and updating of platform and user-specific security policies on a diverse range of internal hardware platforms supporting various software operating systems.
Includes an additional focus on protecting Agency data by performing threat and incident detection, and incident response.
Works under minimal direct supervision and may supervise the work of others.
Primary Duties & Job
Responsibilities:
Completes task designed to ensure security of the Agency's systems and information assets through confidentiality, integrity & availability.
Implements confidentiality measures that protects against unauthorized access, modification, or destruction and helps to develop IT security policies and standards to support the security objectives.
Develops and enforces the organization's security policies and procedures, security awareness program, the information security portion of the business continuity and disaster recovery plans, and all industry and government compliance issues.
Works with end users to determine needs of individual divisions and offices within the department of those risks.
Mitigations Conducts Risk Management analysis to identify areas of risk and develop security measures to prevent loss and assist in the Participates in training, self-study, and statewide initiatives on security standards and best practices to serve as a valuable go-to security subject matter expert for the Agency.
Actively monitors the Agency's infrastructure and systems for security threats.
Actively manage various security programs/platforms, monitors the use of data files, and regulates access to safeguard agency information in those computer files.
Works with business owners, IT managers, Agency Staff, and vendors to provide timely and efficient IT coordination of security services to meet Agency business needs.
Creates reports on status of Agency information security programs and projects and communicate reports to senior management and the leadership teams.
Develops, delivers, and maintains security standards, system security plans, best security and operations practices, architecture, and systems.
Implement IT system security plans, projects, and other initiatives.
.
Mitigations Team on matters concerning the Agency's security status & posture.
Assists in Information Security Investigations, Threat Assessments and InfoSecReports directly to the Assists with numerous Information Security tools and programs.
Qualifications:
Bachelor's degree in information technology, computer science, information assurance, or a related field from an accredited college or university AND Six years of information technology experience, Two years of which in information security or information assurance.
Hands on working experience with at least two or more of these security technologies (e.
g.
, Vulnerability Management, Penetration Testing, Email Security, EDR, MFA, SIEM, IPS, Firewalls).
Possess one or more current industry certifications relevant to the job e.
g.
, Security+, CISSP, CISM, C-RISC, CISA, SANS certifications.
Experience with security tools and technology, i.
e.
, FireEye (Trellix), Tenable.
io, Nessus, Splunk, SolarWinds, Varonis, GRC tools, CrowdStrike Falcon, LogRhythm, and policies management.
Knowledge & experience with cloud technologies:
Amazon Web Services (AWS), to include WatchGuard, GuardDuty, Identity & Access Management (IAM), Microsoft Azure.
Technical knowledge in endpoint security, VPN, Firewall, network monitoring, intrusion detection, web server security, and wireless security.
Practical experience in systems administration, vulnerability management, endpoint management, and email security operations and management.
Excellent analytical and critical thinking skills to identify possible threats.
Familiarity with IRS Publication 1075, NIST SP 800-53 Privacy Controls, NIST SP 800-63 Digital Identity Guidelines, NIST SP 800-88 Guidelines for Media Sanitization, NIST SP 800-18 System Security Plans (SSP), NIST SP 800-52, FIPS-140, NIST SP 800-61, NIST SP 800-83, other NIST SP Guidelines, etc.
, knowledge of NIST Frameworks, FISMA, CIS Controls, and the Criminal Justice Information Services Policy.
Progressive experience in information technology, incident response & incident reporting, technical support, cybersecurity, cryptography, and knowledge of data encryption techniques.
Ability to work independently and prioritize multiple projects in a highly dynamic environment.
Excellent communication and teamwork skills and demonstrated across broad group of technical and non-technical stakeholders.
Assist with Office of Information Security Risk Assessments, System Security Plans, and other reports required by the IRS Office of Safeguards, state audits, and other third-party assessors.
DOR will conduct a background check on all candidates considered for the position.
Individuals must be compliant with Georgia tax obligations.
Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired.
All employees will be fingerprinted.
Central Business Solutions, Inc(A Certified Minority Owned Organization) Checkout our excellent assessment tool:
http:
//www.
skillexam.
com/ /> Checkout our job board :
http:
//www.
job-360.
net/ Central Business Solutions, Inc 37600 Central Court Suite 214 Newark CA, 94560 Phone:
(833)247-8800 Fax:
(510)-740-3677 Web:
http:
//www.
cbsinfosys.
com Recommended Skills Amazon Web Services Analytical Architecture Assessments Auditing Business Continuity And Disaster Recovery Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
