| Senior Information Security Analyst at Remote, Remote, USA |
| Email: [email protected] |
| From: Kuldeep Sharma, VizonInc [email protected] Reply to: [email protected] Job Description -Senior Information Security Analyst for a contract role (Preferably contract to hire). This is a hybrid role where candidates are expected to be in the office for 2 days a week - Columbia, Maryland. *Only candidates who are eligible to convert to full time without restriction can be considered at this time.** **Must be local to the Columbia, Maryland area.** This person will be a key member of the security team, responsible for safeguarding the organization's systems and data from cyber threats. The primary focus will be assessing security risks, developing and implementing security measures, and ensuring compliance with regulations, contractual requirements, and established policies and standards. This individual will play a crucial role in supporting the Federal business teams and must have an understanding of FedRAMP, NIST 800-53, HIPAA, and/or FIPS. The preferred candidate will have experience with one or more Federal agencies including CMS, HHS, or HRSA. Duties Develop and implement security standards, policies, and procedures to safeguard resources ensuring compliance with HIPAA, NIST, FedRAMP, and/or HITRUST requirements. Evaluate security and privacy risks by balancing business drivers, best practices, and external drivers. Provide proactive solutions or recommendations through collaboration across business units. Security Operations and Vulnerability Management Support vulnerability management activities. Validate creation, documentation, and completion of Plans of Action and Milestones (POA&Ms) Lead computer security incident response efforts including but not limited to preparing executive summaries, recommending mitigation strategies, and tracking remediation efforts. Facilitate BCP/DR planning including coordination of documentation and testing. Lead the creation and ensure the ongoing maintenance of documentation for multiple systems including but not limited to risk assessments, privacy impact assessments, and security plans. Validate compliance of documentation with government and industry standards. Maintain accurate and up-to-date documentation of incidents, tickets, vulnerabilities, and compliance activities. Work closely with Federal contract teams to ensure implementation of security controls and best practices as required by the contract. Requirements 5-7 years of work experience in IT in one or more areas of infrastructure, application development, database, and systems management 3 or more years of experience must be in an information security role with demonstrated working knowledge of information security, federal and state rules and regulations, company/business unit operations, compliance policies, procedures, and/or programs in the area of assignment 2-year degree in Information Technology, Information Security, or related field and/or equivalent training and/or experience. Bachelors degree in Computer Science, MIS, Information Assurance, or a related field is preferred Experience working with FedRAMP, NIST 800-53, HIPAA, and/or FIPS Industry-standard certification (CISSP, SSCP, GSNA, or CISA) is preferred. Experience with NIST, ISO, and HIPAA requirements/guidance is highly desirable * Keywords: information technology microsoft Senior Information Security Analyst [email protected] |
| [email protected] View all |
| Thu Jul 11 22:13:00 UTC 2024 |