Information Security Officer

Information Security Officer

We are seeking an Information Security Officer (ISO) to coordinate the adoption and implementation of centrally provided cyber security services for a State agency.

Duties and Responsibilities:

• Oversight of daily operations of ISO-related projects and processes
• Planning and scheduling service delivery and adoption
• Identifying opportunities for new services within assigned organizations
• Development and maintenance of metrics to track adoption rates
• Conducting assessments and evaluations to ensure effectiveness and compliance with established standards

Key Tasks:

• Review and implement security policies to ensure compliance with regulatory requirements and organizational standards
• Thorough reviews of vulnerability data, coordinating with stakeholders to prioritize and address identified vulnerabilities effectively
• Participation in Authorization to Operate (ATO) assessments, contributing expertise to ensure systems meet security requirements for operation
• Collaboration with cross-functional teams to develop and enhance security protocols and procedures for seamless integration and utilization
• Regular reporting on adoption rates and identifying areas for improvement
• Monitoring security systems to detect and respond to potential threats
• Primary point of contact for ISO agency-related inquiries and engagements
• Progress monitoring against established plans and adjustment as necessary
• Development of strategic plans and roadmaps for service delivery
• Implementation of measures to address identified vulnerabilities
• Participation in design and implementation of secure system architectures
• Development and delivery of security awareness training programs for employees
• Ability to develop and maintain an incident response plan
• Leadership and management of security-related projects, ensuring timely and successful completion
• Preparation and presentation of security reports to management and stakeholders
• Maintenance of accurate and up-to-date security documentation
• Efficient allocation of resources

Must Haves:

• Bachelor's degree in computer science, information technology, information security, cybersecurity, or related field
• Graduate degree or one of the following certifications: CISSP, CISM, or CISA
• Minimum of 5 years' experience in information security management, IT administration, or related fields
• 3 years' experience in implementing cyber assessment and remediation plans, procedures, and cyber defense operations
• Practical experience with security technologies, incident response, risk management, and compliance
• Analytical and problem-solving skills, with the ability to analyze complex security issues and develop effective solutions
• Specific experience in implementing ISO plans, procedures, and cyber defense operations
• Experience tracking adoption rates and implementing centrally managed cyber services
• Experience in developing strategic plans, roadmaps, and business cases for new cybersecurity initiatives
• Strong knowledge of industry standards, regulations, and best practices related to information security, including ISO 27001, and NIST Cybersecurity Framework
• Excellent communication and collaboration skills, with the ability to effectively communicate technical concepts
• Meticulous attention to detail to identify and mitigate security risks
• Understanding of various security protocols, standards, and methodologies
• Proven experience in managing scalable cybersecurity projects, including planning, execution, monitoring, and closing phases
• Ability to coordinate cross-functional teams and manage multiple projects simultaneously
• Project management skills, with experience in planning, scheduling, and monitoring the delivery of cybersecurity services
• Familiarity with federal, state, and local regulations related to information security and privacy
• Experience in implementing ISO plans, procedures, and cyber defense operations
• Experience tracking adoption rates and implementing centrally managed cyber services
• Experience in developing strategic plans, roadmaps, and business cases for new cybersecurity initiatives

About Us:

A world-class IT services company that serves thousands of clients across the globe. When you join us, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.