| Remove/unsubscribe | Update contact/membership info. | Subscribe to receive requirements & resumes | |
| Job Title : Security Compliance Analyst
· The Security Compliance Analyst will provide a complete review of the currently proposed ImpaCT security-related deliverables. · The review will be facilitated by the System Security Plan (SSP) Deliverable, Integrated Security Plan (ISP) Deliverable, Security Design Plan (SDP) Deliverable, Privacy Impact Assessment (PIA) Deliverable, and supporting documentation provided. · The process will include collection of questions, comments and concerns. · The Security Compliance Analyst will work with the project stakeholders to facilitate responses to all questions, comments and concerns. · These responses will be utilized by the Executive Team to determine next steps and potential future activities. · The Security Compliance Analyst will also participate in the pre-submission and submission review of upcoming security documentation requested by the DSS Information Security Officer (ISO) to be prepared and submitted by the SI. · Optimally, the candidate would be familiar with DSS' business and security related process.
Suggested Role and Responsibilities: Complete full review of currently released security documentation deliverables and work products Compile questions, comments and concerns with respect to each document Facilitate resolution of questions, comments, and concerns Escalate concerns (as necessary) to Project Leadership including recommended mitigation strategy Complete full review of upcoming security documentation deliverables and work products Participate in pre-submission and post submission review sessions Compile questions, comments and concerns with respect to each document Facilitate resolution of questions, comments, and concerns Escalate concerns (as necessary) to Project Leadership including recommended mitigation strategy Provide security expertise and support to the DSS Information Security Officer (ISO) Provide support as directed by the ImpaCT PMO, Business and Technical Teams Suggested
Candidate Qualifications: Demonstrated success in past roles where Security certification and requirement skills with State and Federal Agencies were utilized to ensure system security, functionality and performance were delivered in-line with client and agency expectations Maintains Certified Information Systems Security Professional (CISSP) certification Experience with network security and network security compliance (Nessus experience preferred) Experience with NIST 800-53, 500-37, and 800-57 Experience in Enterprise System Data Modeling and SDLC Process Experience with State and Federal Regulations a plus Experience with testing of IRS Computer Security Evaluation Matrices (SCSEMs) Ability to present and succinctly identify potential risks, issues, and concerns to Business and Technical Teams.
Thanks, Anoop Verma 270 West Lancaster Avenue, Suite H-2, Malvern, PA 19355 Sr. Business Development Manager (Desk): (610) 590-1512 Ext : 1008; (Fax):866.655.7805 anoop@zodiac-solutions.com | www.zodiac-solutions.com | |
| Privacy Policy | This is not an unsolicited eMail. Under Bill 1618 Title III passed by the 105th USA Congress this eMail cannot be considered as spam as long as we include our contact information and an option to be removed from our eMailing list. If you have received this message in error or, are not interested in receiving our eMails, please click the Remove/Unsubscribe link provided at the top of this eMail and complete the unsubscription process. Removal of your eMail address from our database is an automated process, so you must successfully complete this unsubscription process to get it done, thank you. | - powered by PROHIRES POWERHOUSE |
No comments:
Post a Comment