Create a Job Alert.

Enter your email below to save this search and receive job recommendations for similar positions.
Thank you. We'll send jobs matching these to
You already suscribed to this job alert.
US
0 suggestions are available, use up and down arrow to navigate them
What job do you want?

IS Security Risk Analyst III job in Columbia at Globalpundits Technology Consultancy, Inc

Create Job Alert.

Get similar jobs sent to your email

List of Jobs

Apply to this job.
Think you're the perfect candidate?
IS Security Risk Analyst III at Globalpundits Technology Consultancy, Inc

IS Security Risk Analyst III

Globalpundits Technology Consultancy, Inc Columbia, SC Contractor

CANDIDATE TECHNICAL BACKGROUND:

  • 6 years of I/T experience including 4 years of IT security, risk assessment and/or compliance
  • experience.
  • Experience with NIST, FISMA, COBIT, SSAE16, PCI, SOX, HIPAA, or other regulatory requirements.
  • Experience working on Security Management Plan
  • Experience with working on vulnerability matrices
  • Experience with the scanning and remediation of I/S assets using automated tools is beneficial (i.e. Nessus, AppDetective, Vanguard, etc.).
  • Knowledge of technical security controls from NIST, DISA, USGCB, etc. compliance domains across multiple platforms.
  • Deep understanding of security risk exposures and how vulnerabilities can be translated into business risk that leadership understands.
  • Advanced knowledge on security risk assessment execution.
  • Expert level knowledge on risk mitigation strategies.
  • Excel expert with the ability to analyze, trend and forecast from high volumes of compliance data.
  • Proficient with MS Word.

PREFERRED / HIGHLY DESIRED BACKGROUND:

  • Experience with compliance programs within a government agency (i.e. Medicare, Tricare) is preferred.
  • Direct experience with NIST 800-53 security frameworks.
  • Any experience with Visio or PowerPoint a plus.
  • Any experience with DoD, DIARMF or FedRamp program are a plus.
  • SQL experience a plus.

BEHAVIOR CHARACTERISTICS:

  • Works well with others and is able to appropriately accept the suggestions and ideas of other employees.
  • Excellent communication and interpersonal skills.
  • Strong team player with ability to adapt to change.
  • Ability to work across organizational boundaries to obtain information and accomplish goals.
  • Able to mentor less experienced team members.
  • Ability to work on complex enterprise level projects as a security subject matter expert.
  • Ability to speak and communicate with executive level audiences.
  • Ability to prepare formal written presentations for a wide audience.

DAILY JOB RESPONSIBILITIES:

  • Defining, documenting and implementing Information Security standards and policies across the enterprise
  • Working with external auditors to provide support as needed
  • Reviewing customer contracts, RFPs and requirements for appropriateness
  • Establishing and maintaining an overall information security program
  • Assuring industry advisories, alerts or other requirements are acted upon in an appropriate and timely manner
  • Assessing the state of BlueCross BlueShield of SC information security on a periodic basis
  • Providing information security related guidance to I/S
  • Working with Line of Business (LOB) security officers to coordinate efforts
  • Maintaining a repository of information security data and compliance guidance
  • Providing Corporate Security Council coordination and support

SYSTEM(S) THE CONTRACTOR WILL INTERACT WITH/BE RESPONSIBLE FOR:

  • Security Service Portfolio stored in RSA Archer

PRIMARY WORKING RELATIONSHIP(S) INSIDE AND OUTSIDE THE ORGANIZATION:

  • Project Leaders/Project Managers, internal customers (i.e. Palmetto GBA, CGS, CDS, PGBA and Commercial/Corporate), System Security Officers, all levels of I/S Management and Internal Customer Management, internal and external auditors, I/S staff

WORKING HOURS/CONDITIONS:

  • Normal M-F 8 to 5; some overtime may be necessary based on workload

JOB DESCRIPTION:

  • 40% - Conduct procedural and operational review of information security processes and system controls against corporate, government, and internal I/S compliance standards.
  • 40% - Provide guidance to I/S functional teams with the implementation, monitoring, and reporting of control processes, documentation, and compliance measures.
  • 10% - Evaluate technology and business-related controls for integrating business and information system security and risk mitigation efforts.
  • 10% - Develop and implement tools to support automated risk assessment and compliance efforts.

Skills:

  • Bachelor's Degree in Computer Science, Information Technology or related degree.
  • OR Associates Degree in Computer Science, Information Technology or related PLUS 2 yrs work-related exp.
  • OR: 8 Years Additional 4 years work-related work exp.: 10 Years
  • IT experience including 4 years of IT security, risk assessment and/or compliance experience: 6 Years CISSP, CISA, CISM, MCSE, GIAC or equivalent security certification Experience with NIST, FISMA, COBIT, SSAE16, PCI, SOX, HIPAA, or other regulatory requirements Experience working on Security Management Plan Experience with working on vulnerability matrices
  • Experience with the scanning and remediation of I/S assets using automated tools is beneficial (i.e. Nessus, AppDetective, Vanguard, etc.).
  • Good understanding of compliance standards, processes, and procedures MS Word, Excel, Access. Ability to use Excel and Access for spreadsheet analysis
  • Good understanding of functional I/S processes Experience with compliance programs within a government agency (i.e. Medicare, Tricare)
  • Experience with DoD, DIARMF or FedRamp program SQL experience IAVAs and patch management DOD or CMS experience PowerPoint Visio
 

Recommended Skills

  • Adaptability
  • Certified Information Security Manager
  • Certified Information Systems Security Professional
  • Communication
  • Computer Security
  • Content Management
Apply to this job.
Think you're the perfect candidate?

Help us improve CareerBuilder by providing feedback about this job:

Job ID: 15916

CareerBuilder TIP

For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.