| IT Security Manager be local to (GA )Atlanta at Atlanta, Georgia, USA |
| Email: [email protected] |
| From: srikanth, HCL Gloabl [email protected] Reply to: [email protected] Primary Duties & Job Responsibilities: Complete task designed to ensure security of the Agencys systems and information assets through confidentiality, integrity & availability. Implement confidentiality measures that protects against unauthorized access, modification, or destruction and helps to develop IT security policies and standards to support the security objectives Develop and enforce the organization's security policies and procedures, security awareness program, the information security portion of the business continuity and disaster recovery plans, and all industry and government compliance issues Work with end users to determine needs of individual divisions and offices within the department Conduct Risk Management analysis to identify areas of risk and develop security measures to prevent loss and assist in the Mitigations of those risks Participate in training, self-study, and statewide initiatives on security standards and best practices to serve as a valuable go-to security subject matter expert for the Agency Actively monitor the Agencys infrastructure and systems for security threats. Actively manage various security programs/platforms, monitors the use of data files, and regulates access to safeguard agency information in those computer files Work with business owners, IT managers, Agency Staff, and vendors to provide timely and efficient IT coordination of security services to meet Agency business needs Create reports on status of Agency information security programs and projects and communicate reports to the CISO, senior management and the leadership teams Develop, deliver, and maintain security standards, system security plans, best security and operations practices, architecture, and systems. Implement IT system security plans, projects, and other initiatives Share directly with the InfoSec Team on matters concerning the Agencys security status & posture. Assists in Information Security Investigations, Threat Assessments and Mitigations Assists with numerous Information Security tools and programs. Entry Qualifications: Bachelors degree in computer science or information technology 5 years or more of relevant professional experience in Information and Cybersecurity 3 years in a specific field of IT Security, 1 year of which must include management experience. Hands on working experience with at least two or more of these security technologies (e.g., Vulnerability Management, Penetration Testing, Email Security, EDR, MFA, SIEM, IPS, Firewalls) Possess one or more current industry certifications relevant to the job e.g., Security+, CASP, CISSP, CISM, C-RISC, CISA, SANS certifications, or equivalent experience Experience with security tools and technology such as, i.e., FireEye (Trellix), Tenable.io, Nessus, Splunk, SolarWinds, Varonis, GRC tools, CrowdStrike Falcon, and LogRhythm Knowledge & experience with cloud technologies: Amazon Web Services (AWS), to include WatchGuard, Guard Duty, Identity & Access Management (IAM), Microsoft Azure. CloudTrail, CloudWatch, Audit Manager Technical knowledge in endpoint security, VPC, VPN, Firewall, network monitoring, intrusion detection, web server security, and wireless security Practical experience in systems administration, vulnerability management, endpoint management, and email security operations and management Excellent analytical and critical thinking skills to identify possible threats. Preferred Qualifications Familiarity with IRS Publication 1075, NIST SP 800-53 Privacy Controls, NIST SP 800-63 Digital Identity Guidelines, NIST SP 800-88 Guidelines for Media Sanitization, NIST SP 800-18 System Security Plans (SSP), NIST SP 800-52, FIPS-140, NIST SP 800-61, NIST SP 800-83, other NIST SP Guidelines, etc., knowledge of NIST Frameworks, FISMA, CIS Controls, and the Criminal Justice Information Services Policy Progressive experience in information technology, incident response & incident reporting, technical support, cybersecurity, cryptography, and knowledge of data encryption techniques Ability to work independently and prioritize multiple projects in a highly dynamic environment Excellent communication and teamwork skills and demonstrated across broad group of technical and non-technical stakeholders Assist with Office of Information Security Risk Assessments, System Security Plans, and other reports required by the IRS Office of Safeguards, state audits, and other third-party assessors. Skills and knowledge in the areas of computer programming, software development, and computer network security Knowledge and experience in Policies and procedures development, revision and management. DOR will conduct a background check on all candidates considered for the position. Individuals must be compliant with Georgia tax obligations. Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired. All employees will be fingerprinted. Skill Required / Desired Amount of Experience Bachelors degree in computer science or information technology Required Professional experience in Information and Cybersecurity Required 5 Years Experience in a specific field of IT Security Required 3 Years Management experience. Required 1 Years Experience with these security technologies (e.g., Vulnerability Management, Penetration Testing, Email Security, EDR, MFA, SIEM, IPS, Firewalls) Required 3 Years Security+, CASP, CISSP, CISM, C-RISC, CISA, SANS certifications (MUST UPLOAD CERTIFICATIONS) Required FireEye (Trellix), Tenable.io, Nessus, Splunk, SolarWinds, Varonis, GRC tools, CrowdStrike Falcon, and LogRhythm Required Amazon Web Services (AWS), to include WatchGuard, Guard Duty, Identity & Access Management (IAM), Microsoft Azure. CloudTrail, CloudWatch, Audit Man Required 2 Years Technical knowledge in endpoint security, VPC, VPN, Firewall, network monitoring, intrusion detection, web server security, and wireless security Required 2 Years Experience in systems administration, vulnerability management, endpoint management, and email security operations and management Required Excellent analytical and critical thinking skills to identify possible threats Required Knowledge of NIST Frameworks, FISMA, CIS Controls, and the Criminal Justice Information Services Policy Highly desired Experience in incident response & incident reporting, technical support, cybersecurity, cryptography, and knowledge of data encryption techniques Highly desired Skills and knowledge in the areas of computer programming, software development, and computer network security Highly desired Knowledge and experience in Policies and procedures development, revision and management Highly desired Keywords: cprogramm information technology golang |
| [email protected] View all |
| Wed Sep 20 03:15:00 UTC 2023 |