Security Analyst

This is a 30 month opportunity on the Hourly-Based IT Services (HBITS) Contract at the State of New York. (Possibility of extension).

Required Experience :

• Bachelor’s Degree in one or more of the following : Information Security, Information Assurance, Cybersecurity, Computer Science, Information Science, Information System Management, Digital Forensics, Compliance and Risk Management
• One or more of the following certifications : GICSP, GSEC, CISSP, CCSP, CCSK, CompTIA Cloud , GCSA, CompTIA Network , CompTIA Security , CompTIA CySA , CompTIA CASP , CISSP, CRISC, ISSAP, ISSEP, CGRC, CSSLP, SSCP, or other applicable information and / or cybersecurity certifications
• 48 months experience evaluating business systems (Commercial Off the Shelf and Custom Developed) for alignment with Information Technology and / or Operational Technology security policies, standards, laws, regulations, and industry best practices.
• 36 months experience in evaluating security controls for cloud environments
• 36 months experience working with cross functional teams to mitigate or remediate system and application vulnerabilities
• 60 months experience evaluating information security and compliance for Information Technology systems and / or Operational Technology systems.
• 60 months experience conducting written risk and / or security assessments using industry standards such as NIST, CIS Critical Controls, ISO 27001, etc.
• 48 months experience triaging and determining mitigation plans (with and without Vendor) to resolve security risks and / or threats to business information systems and operational technology systems