**Only those lawfully authorized to work in the designated country associated with the position will be considered. **
**Please note that all Position start dates, and duration are estimates and may be reduced or lengthened based upon a clients business needs and requirements. **
***Hybrid Role with 2 days onsite per week from day 1 - The first six months in person days must be Tuesday/Wednesday.
Required Skills/ Experience:Experience in the IT industry analyzing and applying information security principles and practices: 1 YearsExperience reviewing IT systems/applications plus basic knowledge of networking components and various operating systems: 1 YearsExperience analyzing the applicable NIST Special Publications 800-37 Revision 1, 800-53 Revision 3,4 or 5, and 800-53A Revision: 1 YearsExperience with other Security Frameworks (ISO, NIST, COBIT, HIPAA/HITECH, etc.) and regulatory requirements is a plus Nice to have: 2 yearsCISSP, CISA, PMP and/or Security+ certification Nice to haveExperience working with software vendors to implement security controls Nice to haveExperience working independently and in a team environmentStrong written and verbal communication skills including the ability to explain technical matters to a non-technical audienceAbility to collaborate on multiple projects/efforts at a given timeFlexibility to adjust quickly to multiple demands, shifting priorities, ambiguity, and rapid change
Responsibilities:Create system security plans (SSP) for new applications in alignment with the Secure Application Development Life Cycle (SADLC).Maintain SSPs for existing applications requiring authority to operate (ATO) and those facing software and/or hardware enhancements.Continuously monitor plans of action and milestones (POA&M) and corrective action plans (CAP) as they relate to the SSPs in collaboration with the Enterprise Information Management (EIM) office.Validate respective SSPs to ensure NIST control requirements are met.Author recommendations associated with your findings on how to improve the customers security posture in accordance with SOM PSP & NIST controls.Assist team members and vendors with proper artifact collection to satisfy assessment requirements.
Position Description:Detailed Job Duties:The IT Security Analyst is responsible for completing and maintaining system security plans (SSP) for new and existing systems.This requires close coordination with IT project teams, business and enterprise security representatives, and product owners, to establish and maintain processes and controls for security vulnerability remediation.
Benefits:For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.by Jobble #J-18808-Ljbffr
All Job Ads are subject to GrabJobs’s Terms of Service. We allow users to flag postings that may be in violation of those terms. Job Ads may also be flagged by GrabJobs moderation team. However, no moderation system is perfect, and flagging a posting does not ensure that it will be removed.
Be the first to receive the latest Others Full-Time Jobs in the US.
Setup your job alert:
By activating job alerts, I agree to GrabJobs Terms & Privacy Policy. I can unsubscribe to job alerts anytime.
Skip
GrabJobs is the no1 job portal in the US, connecting you to thousands of jobs fast!
Find the best jobs in the US, apply in 1 click and get a job today!
No CV Required
How to get there?
Your email job alert is now active!