Previous Job
Previous
Security Analyst
Ref No.: 16-00652
Location: Columbia, South Carolina
Client: Department of Administration
Location: Columbia,SC
Duration: 1 Month + high possibility of extension
Comment: Candidates who applied for Postings 6521-1 or 6606-1 should NOT apply for this as this is a re-post of these positions. END DATE will be 6/30/2016 with the high possibility of extension.
Will need for successful candidates to be able to start immediately (upon our review and approval of their background check results). CB


Job Description:
Job Description: Extremely Skilled and Knowledgeable Security Analysts needed. Able to work in a fast pace environment, handle multiple tasks simultaneously and meet deadlines.

SCOPE OF THE PROJECT:
THE DIVISION OF INFORMATION SECURITY IS TASKED WITH ENSURING COMPLIANCE WITH STATE GUIDELINES. THIS POSITION WILL BE PERFORMING THOSE SERVICES INCLUDING:
• SUPPORTING AGENCIES DURING THEIR DEVELOPMENT OF THE INFORMATION SECURITY PROGRAM WITH DIRECT TACTICAL IMPLEMENTATION ASSISTANCE.
• DEVELOPING AND TRACKING AGENCY INFORMATION SECURITY IMPLEMENTATION PLANS
• INTERVIEWING ADMINISTRATORS, MANAGERS, AND THIRD PARTIES TO AID IN DEVELOPMENT OF PROGRAM ARTIFACTS
• ENSURING HIGH-LEVEL ASSESSMENTS OF AGENCIES INFOSEC WORK TO ENSURE PROGRESS IS MADE
• PROVIDING HIGH-LEVEL ANALYSIS OF PROCESS AND PROCEDURES WORK TO ENSURE COMPLIANCE WITH STATE STANDARDS

DAILY DUTIES / RESPONSIBILITIES:
THIS IMPLEMENTATION ASSISTANCE WOULD INCLUDE, BUT IS NOT LIMITED TO:
• INTERVIEWING BUSINESS AND TECHNICAL OWNERS TO DETERMINE POLICIES AND PROCEDURES USED FOR EACH AGENCY PROCESS
• DEVELOPING AND TRACKING INFOSEC IMPLEMENTATION PLAN PROGRESS
• DOCUMENTING INFORMATION GATHERED DURING BOTH INTERVIEWS AND DOCUMENT REVIEWS TO ASSIST WITH DEVELOPING FORMAL PROCESS AND PROCEDURES
• ASSESSING AGENCY DOCUMENTATION TO ENSURE ADEQUATE APPROACHES ARE USED TO COMPLY WITH CONTROLS
• FACILITATING AGENCY STATUS REPORTING
• COLLABORATING WITH AGENCIES TO PROVIDE RECOMMENDATIONS FOR COMPLIANCE

REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• HAVE COMPLETED AN INFORMATION SECURITY PLAN OR SYSTEM SECURITY PLAN WORKBOOK
• PRIOR EXPERIENCE WORKING WITH FISMA STANDARDS
• MUST HAVE A STRONG WORKING KNOWLEDGE OF NIST 800-53
• PRIOR EXPERIENCE POA&M OR CAP
• STRONG COMMUNICATION EXPERIENCE

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• SIMULTANEOUSLY MANAGE MULTIPLE INFOSEC WORK EFFORTS
• STRONG SCHEDULE MANAGEMENT AND RESOURCE PLANNING SKILLS
• ABILITY TO WORK AT A HIGH-VOLUME AND FAST PACE
• STRONG COLLABORATOR AND STRONG ABILITY TO MEET DEADLINES
• MANAGE REGULATORY COMPLIANCE PROJECTS
• ABILITY TO IDENTIFY, MAP, AND RE-EINGINEER BUSINESS PROCESSES


REQUIRED EDUCATION/CERTIFICATIONS:
10+ YEARS OF EXPERIENCE IN INFORMATION SECURITY AND COMPLIANCE EXPERIENCE

REQUIRED CERTIFICATIONS: CISA OR CISSP OR CISM OR GSLC OR EQUIVALENT

NIST 800 Certification is not required but is preferred. Knowledge of NIST is requirement.

Skills  
Skills:
Category
Name
Required
Importance
Level
Last Used
Experience
Administrative Planning Skills Yes 1 Lead Within 6 Months 6 + Years  
Administrative Verbal Communication Skills Yes 1 Lead Within 6 Months 6 + Years  
Administrative Written Communication Skills Yes 1 Lead Within 6 Months 6 + Years  
Miscellaneous Ability to analyze and document, business and system processes using various methods and tools. Yes 1 Lead Within 6 Months 6 + Years  
Miscellaneous Project Planning Yes 1 Lead Within 6 Months 6 + Years  
Miscellaneous Time Management No 1 Lead Within 6 Months 6 + Years  
Network Security Federal Information Security Management Act (FISMA) Yes 1 Lead Within 6 Months 6 + Years  
Network Security information security principles and practices Yes 1 Lead Within 6 Months 6 + Years  
Network Security IT Security Yes 1 Lead Within 6 Months 6 + Years  
Network Security risk/vulnerability assessments Yes 1 Lead Within 6 Months 6 + Years  
Network Security Writing Plan of action and Milestones (POA&M) Yes 1 Lead Within 6 Months 6 + Years  
Network Security NIST-800 Certification No 1 Lead Within 6 Months 6 + Years  
Networking & Directories Security Program evaluation No 1 Expert Within 6 Months 6 + Years  
Specialties NIST Security Yes 1 Lead Within 6 Months 6 + Years  
Specialties Project Management No 1 Expert Within 6 Months 6 + Years  
Additional Skills: REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• HAVE COMPLETED AN INFORMATION SECURITY
PLAN OR SYSTEM SECURITY PLAN WORKBOOK
• PRIOR EXPERIENCE WORKING WITH FISMA STANDARDS
• MUST HAVE A STRONG WORKING KNOWLEDGE OF NIST 800-53
• PRIOR EXPERIENCE POA&M OR CAP
• STRONG COMMUNICATION EXPERIENCE

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• SIMULTANEOUSLY MANAGE MULTIPLE INFOSEC WORK EFFORTS
• STRONG SCHEDULE MANAGEMENT AND RESOURCE PLANNING SKILLS
• ABILITY TO WORK AT A HIGH-VOLUME AND FAST PACE
• STRONG COLLABORATOR AND STRONG ABILITY TO MEET DEADLINES
• MANAGE REGULATORY COMPLIANCE PROJECTS
• ABILITY TO IDENTIFY, MAP, AND RE-EINGINEER BUSINESS PROCESSES