| Architect - Expert ISO ISBA PCI-DSS (716589) at Remote, Remote, USA |
| Email: [email protected] |
| From: Dheeraj, webgeosolutions [email protected] Reply to: [email protected] Greetings from Web Geo Solutions, LLC. We have an exciting new job opportunity with our direct client, matching your skills. Please review the job description and respond with all the requested details if you are interested. Job Details JOB ID: NCDOT - Architect - Expert ISO ISBA PCI-DSS (716589) Client: NC - Last day to apply: 8/9 Initial Term: 12 Months+ Tentative start date: ASAP Interview mode : Webcam/In-Person Work location: Remote Job Description: The NCDIT-Transportation (NCDIT-T) Information Security Office (ISO) requires a contract information security specialist (expert) architect/analyst resource to provide compliance program development, leadership, and management for NCDIT-T and the NCDOT business, in addition to information security policy, standards, process, procedure, and application consulting. This position will be an NCDIT-T Information Security Business Architect (ISBA, working title) dedicated primarily to support overall ISO Compliance Program development and management which can include, but is not limited to, compliance program components such as annual compliance reporting, NCDOT Payment Card Industry (PCI-DSS), audit support, 3rd party, overall security, cloud, and identity compliance. This position will also deliver project consulting focused on information security compliance and assessment of data handled by NCDOT applications, systems, and third parties. This staff will lead ongoing PCI-DSS compliance maintenance and annual assessment functions. This staff will be responsible for identity, cloud, and overall agency IT security compliance leadership. To maintain adequate security posture and respond to security consulting needs, the ISO must have additional staff to support ISO project workload demand. The recruitment of this scarce resource is a top priority to maintain NCDOT's security compliance and risk management. Maximum hourly rate is based on the current vendor rate specifications of: Category: Standard, Job Title: Security Specialist, Skill Level: Expert, Skill Demand: High, Not to exceed rate of $126.63 per hour for 12 months (2080 hours). NCDIT-T ISO is requesting a 12 months (2080 hours) contract engagement, at a rate $126.63 based upon the 2022 CAI rates due to very high demand for expert information security staff regarding recruitment and retention, and with highly competitive rates & salaries in private industry. If you are interested, please reply with below details for further evaluation Please send all the requested below information for consideration Contact details (and employer details if C2C) Your full legal name (Must match with state issued ID or passport) Phone number Personal email id (this same id should be used to send E-RTR after submission) Desired hourly rate (above max advertised rate is not considered): W2: $ C2C: $ Work Status (H1B, EAD, GC, US Citizen), please attach a copy of work authorization: If H1B, who holds the visa (contact details, please include name, phone number and email) If selected, how soon would you be available to start Have you ever worked for this client If so, please provide team name, project name, reason for leaving and when the engagement ended. Upon selected, employment is subjected to 7-year national criminal background check. Will you be able to attend In-Person interview (Yes or No) Your current address Are you available to be on-site at clients location for the duration of the project Note: Payment for all approved hours will be paid at the straight hourly rate regardless of the total hours worked (regular and overtime hours) by the engaged resource. Do you accept this requirement Upon selection, candidate must be able to provide three (3) references from prior engagements before a final decision is made. Do you accept this requirement LinkedIn profile URL Skill Matrix NCDOT - Architect - Expert ISO ISBA PCI-DSS (716589) Skill Required / Desired Amount in years Your actual Experience in years (Please fill all of them) Current or prior role as a PCI-DSS Qualified Security Assessor (QSA) or PCI-DSS Internal Security Assessor (ISA) Highly desired Experience leading or directly supporting PCI-DSS annual assessment for a L1 or L2 merchant, familiarity with PCI-DSS 3.2 or higher. Required 3 Strong knowledge and experience architecting/designing implementations, configuring, and risk assessing AWS and/or Azure cloud computing environments. Required 3 Progressive advanced experience as an IT information security professional working within an enterprise environment. Required 5 Hands-on experience implementing, administrating and operating technologies such as firewalls, IDS/IPS, SIEM, antivirus, network traffic analyzers Required 5 Detailed technical experience with network security, security protocols, access control, cryptography, application security, and data protection. Required 5 Extensive experience with data classification, handling, assessment, and enforcement. Required 5 Experience implementing and supporting systems within enterprise-class data center environments. Required 5 Advanced knowledge of regulatory compliance including, but not limited to: OWASP, ISO, NIST, FISMA, PCI-DSS, HIPAA and IRS-1075. Required 5 Experience leading risk assessments using industry standard frameworks such as ISO or NIST for complex IT projects and technologies. Required 5 Experience developing, leading and executing information security incident response plans. Required 5 Experience developing and implementing information security policy, standards and procedures. Required 5 Experience providing research and evidence in support of audits. Required 3 CISSP information security certification. Highly desired Specific experience implementing, administrating, or operating Tenable Nessus. Highly desired 2 Specific experience implementing, administrating, operating or utilizing IBM Qradar SIEM Highly desired 2 Experience consulting on information security solutions for a state or federal agency. Highly desired 2 Experience implementing and operating enterprise class data networking solutions Highly desired 5 Experience implementing and operating enterprise class server and storage systems Highly desired 5 Detailed expert knowledge of NIST 800-53, and performing risk assessments utilizing NIST 800-53. Highly desired 5 Detailed expert knowledge of ISO 27001, and performing risk assessments utilizing ISO 27001 Highly desired 2 Detailed expert knowledge of the NIST Cyber Security Framework (CSF), and performing risk assessments utilizing the NIST CSF. Highly desired 2 Familiarity and experience with the Department of Homeland Security (DHS) Cyber Security Evaluation Tool (CSET). Highly desired 2 Experience consulting on information security and IT solutions for a state motor vehicles agency or department of transportation. Highly desired Experience performing risk assessments, documenting and driving compliance with the North Carolina DIT Statewide Information Security Manual. Highly desired Experience completing NC Department of Information Technology Privacy Threshold Analysis (PTA) documentation. Highly desired Experience completing NC Department of Information Technology Vendor Readiness Assessment Report (VRAR) documentation. Highly desired Trained and experience implementing and operating with ITIL (formerly Information Technology Infrastructure Library) concepts. Highly desired ITIL (formerly Information Technology Infrastructure Library) certification. Nice to have Familiarity and practical experience with SABSA or TOGAF enterprise architecture frameworks and methodologies. Highly desired SABSA or TOGAF certification. Nice to have Your resume in MS Word format, copy of any relevant certifications & copy of work authorization (H1B/GC/EAD). Please check the other positions that are currently open with several NC State agencies http://www.indeed.com/cmp/Web-Geo-Solutions,-LLC/jobs Keywords: information technology green card wtwo microsoft Idaho North Carolina |
| [email protected] View all |
| Wed Aug 09 00:51:00 UTC 2023 |