What are the responsibilities and job description for the IT Security Analyst 3 position at S M Software Solutions Inc?
Dear Folks,
I trust this email finds you thriving. If you are open to new professional challenges and seeking a role where your skills can truly shine, I encourage you to consider this opportunity.
If you find this opportunity aligns with your career goals and interests, we kindly request that you send us your resume to sarabhjotkour@thethinkbeyond.com by 2nd Dec. 2024 at your earliest convenience.
Requisition Class: 2022SASECU: SECANAV1: SECANA3: Region 1: Virginia
Job Title: REQ748184 - VDOT IT Security Analyst 3
Client: VDOT
Work Location: 1401 E Broad St, Richmond, VA (VDOT Central Office), US, (Hybrid)
Estimated Start Date: 12/10/2024
Estimated End Date: 06/30/2025
Description:
This position reports to the Governance & Compliance Manager in the IT Division. The IT Security Analyst supports the VDOT Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures.
The Virginia Department of Transportation is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Governance & Compliance Manager in the IT Division.
The IT Security Analyst supports the VDOT Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures. This position will focus on security analysis for our procurement teams. They will ensure that Commonwealth of Virginia Information Security Policies and Standards are followed by the Agency. The broad areas of responsibility for this position include identity and access management, System and services acquisition review, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management and security incident management.
Responsibilities:
• Documents processes and script narratives/executive summaries.
• Create Business focused documentation for circulation among readers with various technical understanding.
• Share insight of Information security and IT procurement approaches and implementation methodologies
• Research and provide written guidance on alignment with security policies/standards.
• Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and procurement recommendations.
• Collaborate with Business areas and cross- functional Procurement Analysts or Enterprise Architects to fully understand business needs and provide strategic consultation on security and risk-averse acquisition.
• Partner with architects, other technical team members to develop roadmaps and strategies to support agency KPIs
• Consult with teams as needed on initiatives and provide tactical direction as well as provide considerations on legacy solutions as they are replaced.
Qualifications:
• Comprehensive knowledge of Information Security principles; including information security trends, emerging technologies, best-practices, controls, models, architecture, etc.
• Practical experience with identity and access management, services and software acquisition or procurement, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management, and security incident management.
• Familiarity with the Commonwealth of Virginia’s Information Security Standards and/or the National Institute of Standards and Technology Publication 800-53.
• Able to communicate effectively in writing and orally, exercise judgment, interpret laws and policies, and maintain effective working relationships with a wide variety of individuals in both the public and private sectors.
• Experience in monitoring IT environments for compliance with information security architecture policies and standards.
• Ability to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives.
• Excellent written and oral communication and presentation skills (possessing the ability to break down complex technical terms into everyday language).
• Demonstrated ability to work with broad cross-section of personnel including all levels of management and external entities (such as other agencies), consultants and service providers to explain security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.
• Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
• Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
Required / Desired Skills Required /Desired Amount of Experience
Knowledge and application of security best practices Required Proficient/SME
Experience in Security review/risk analysis Required Proficient/SME
Knowledge of IT Procurement Required Proficient
Experience in business writing and presenting Required Proficient
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Govern-ance or related field(s). Required Proficient/SME
Skills:
• Knowledge and application of security best practices - 10 Years
• Experience in Security review/risk analysis - 10 Years
• Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s). - 10 Years
• Knowledge of IT Procurement - 7 Years
• Experience in business writing and presenting - 7 Years
I trust this email finds you thriving. If you are open to new professional challenges and seeking a role where your skills can truly shine, I encourage you to consider this opportunity.
If you find this opportunity aligns with your career goals and interests, we kindly request that you send us your resume to sarabhjotkour@thethinkbeyond.com by 2nd Dec. 2024 at your earliest convenience.
Requisition Class: 2022SASECU: SECANAV1: SECANA3: Region 1: Virginia
Job Title: REQ748184 - VDOT IT Security Analyst 3
Client: VDOT
Work Location: 1401 E Broad St, Richmond, VA (VDOT Central Office), US, (Hybrid)
Estimated Start Date: 12/10/2024
Estimated End Date: 06/30/2025
Description:
This position reports to the Governance & Compliance Manager in the IT Division. The IT Security Analyst supports the VDOT Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures.
The Virginia Department of Transportation is seeking to fill the Information Technology (IT) Security Analyst position. This position reports to the Governance & Compliance Manager in the IT Division.
The IT Security Analyst supports the VDOT Information Security mission by implementing results-oriented strategic approaches, plans, programs, and procedures. This position will focus on security analysis for our procurement teams. They will ensure that Commonwealth of Virginia Information Security Policies and Standards are followed by the Agency. The broad areas of responsibility for this position include identity and access management, System and services acquisition review, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management and security incident management.
Responsibilities:
• Documents processes and script narratives/executive summaries.
• Create Business focused documentation for circulation among readers with various technical understanding.
• Share insight of Information security and IT procurement approaches and implementation methodologies
• Research and provide written guidance on alignment with security policies/standards.
• Perform tasks related to Security Compliance and Control Evaluation, Risk analysis, and procurement recommendations.
• Collaborate with Business areas and cross- functional Procurement Analysts or Enterprise Architects to fully understand business needs and provide strategic consultation on security and risk-averse acquisition.
• Partner with architects, other technical team members to develop roadmaps and strategies to support agency KPIs
• Consult with teams as needed on initiatives and provide tactical direction as well as provide considerations on legacy solutions as they are replaced.
Qualifications:
• Comprehensive knowledge of Information Security principles; including information security trends, emerging technologies, best-practices, controls, models, architecture, etc.
• Practical experience with identity and access management, services and software acquisition or procurement, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management, and security incident management.
• Familiarity with the Commonwealth of Virginia’s Information Security Standards and/or the National Institute of Standards and Technology Publication 800-53.
• Able to communicate effectively in writing and orally, exercise judgment, interpret laws and policies, and maintain effective working relationships with a wide variety of individuals in both the public and private sectors.
• Experience in monitoring IT environments for compliance with information security architecture policies and standards.
• Ability to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives.
• Excellent written and oral communication and presentation skills (possessing the ability to break down complex technical terms into everyday language).
• Demonstrated ability to work with broad cross-section of personnel including all levels of management and external entities (such as other agencies), consultants and service providers to explain security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.
• Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
• Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
Required / Desired Skills Required /Desired Amount of Experience
Knowledge and application of security best practices Required Proficient/SME
Experience in Security review/risk analysis Required Proficient/SME
Knowledge of IT Procurement Required Proficient
Experience in business writing and presenting Required Proficient
Educational or Career Experience in Cybersecurity, Government technology implementation, IT Govern-ance or related field(s). Required Proficient/SME
Skills:
• Knowledge and application of security best practices - 10 Years
• Experience in Security review/risk analysis - 10 Years
• Educational or Career Experience in Cybersecurity, Government technology implementation, IT Governance or related field(s). - 10 Years
• Knowledge of IT Procurement - 7 Years
• Experience in business writing and presenting - 7 Years
