CapLeo Global
IT Security Analyst
CapLeo Global, Richmond, Virginia, United States, 23214
Job Title: IT Security AnalystJob Location: Richmond VADuration: 12 Months,Hybrid
Complete Description:Customer is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Deputy Information Security Officer in the Office of Information Security located in Richmond, Virginia.The Virginia Customer of Transportation is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Deputy Information Security Officer in the Office of Information Security located in Richmond, Virginia.The IT Security Analyst supports the Customer Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures. This position helps to ensure that Customer Information Security Policies and Standards are followed by the Agency. The broad areas of responsibility for this position include; identity and access management, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management and security incident management.Responsibilities:Documents processes and script narratives/executive summaries.Create Business focused documentation for circulation among readers with various technical understanding.Share insight of Security Architecture and IT Governance approaches and implementation methodologiesResearch and provide written guidance on alignment with security policies/standards.Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and exception documentation.Collaborate with Business areas and cross- functional Enterprise Architects to fully understand business needs and provide strategic consultation on data security and risk-averse implementation.Partner with architects, other technical team members and to develop roadmaps and strategies to support agency KPIsDesign/Implement Enterprise Security/technology PatternsConsult with teams as needed on initiatives and provide tactical direction as well as provide architecture considerations on legacy solutionsResearch and share finding of architecture governance, controls, and peer review processed with regards to platform technology, security, and cloud.Qualifications:Comprehensive knowledge of Information Security principles; including information security trends, emerging technologies, best-practices, controls, models, architecture.Practical experience with identity and access management, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management, and security incident management.Familiarity with the Customer's Information Security Standards and/or the National Institute of Standards and Technology Publication 800-53.Able to communicate effectively in writing and orally, exercise judgment, interpret laws and policies, and maintain effective working relationships with a wide variety of individuals in both the public and private sectorsExperience in monitoring Environment for compliance with information security architecture policies and standards.Substantial technical experience in 2 or more: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensic techniques, databases, collaboration tools, web & mail services.Ability to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives.Excellent written and oral communication and presentation skills (possessing the ability to breakdown complex technical terms into everyday language).Demonstrated ability to work with broad cross-section of personal including all levels of management and external entities such as Customer consultants and service providers to explain and security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.Thorough understanding of customers priorities and the business criticality of platforms, applications and services.
Complete Description:Customer is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Deputy Information Security Officer in the Office of Information Security located in Richmond, Virginia.The Virginia Customer of Transportation is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Deputy Information Security Officer in the Office of Information Security located in Richmond, Virginia.The IT Security Analyst supports the Customer Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures. This position helps to ensure that Customer Information Security Policies and Standards are followed by the Agency. The broad areas of responsibility for this position include; identity and access management, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management and security incident management.Responsibilities:Documents processes and script narratives/executive summaries.Create Business focused documentation for circulation among readers with various technical understanding.Share insight of Security Architecture and IT Governance approaches and implementation methodologiesResearch and provide written guidance on alignment with security policies/standards.Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and exception documentation.Collaborate with Business areas and cross- functional Enterprise Architects to fully understand business needs and provide strategic consultation on data security and risk-averse implementation.Partner with architects, other technical team members and to develop roadmaps and strategies to support agency KPIsDesign/Implement Enterprise Security/technology PatternsConsult with teams as needed on initiatives and provide tactical direction as well as provide architecture considerations on legacy solutionsResearch and share finding of architecture governance, controls, and peer review processed with regards to platform technology, security, and cloud.Qualifications:Comprehensive knowledge of Information Security principles; including information security trends, emerging technologies, best-practices, controls, models, architecture.Practical experience with identity and access management, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management, and security incident management.Familiarity with the Customer's Information Security Standards and/or the National Institute of Standards and Technology Publication 800-53.Able to communicate effectively in writing and orally, exercise judgment, interpret laws and policies, and maintain effective working relationships with a wide variety of individuals in both the public and private sectorsExperience in monitoring Environment for compliance with information security architecture policies and standards.Substantial technical experience in 2 or more: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensic techniques, databases, collaboration tools, web & mail services.Ability to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives.Excellent written and oral communication and presentation skills (possessing the ability to breakdown complex technical terms into everyday language).Demonstrated ability to work with broad cross-section of personal including all levels of management and external entities such as Customer consultants and service providers to explain and security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.Thorough understanding of customers priorities and the business criticality of platforms, applications and services.