Job Title: IT Security Analyst 2 (Hybrid)
Work Arrangement: Hybrid
Interview Type: Phone or In-Person
Location: Local candidates strongly preferred. If you are willing to relocate(Glen Allen, VA) feel free to apply.
Expected Salary: $40/h
Job Overview:
We are seeking an experienced IT Security Analyst to join our team for a one-year contract. This role is crucial for implementing and maintaining security standards across IT projects, with a strong focus on payment systems. If you have a solid background in information security, particularly in regulated industries, and experience with SEC 501, we encourage you to apply.
Key Responsibilities:
- Security Analysis: Participate in IT projects, focusing on gathering and reviewing security-related artifacts in compliance with Commonwealth SEC530 and IRS PUB1075 standards.
- User Story Review: Collaborate with project teams to review user stories, ensuring that necessary security controls are identified and integrated as part of the project’s success criteria.
- Artifact Management: Assist in identifying and managing deliverables that demonstrate the implementation of security controls. Coordinate approval with the Information Security and Risk Management (ISRM) team.
- Plan of Actions: Support the documentation and identification of Plans of Action and Milestones for controls that do not meet requirements, working closely with the Technology Service Cyber Security division.
Required Skills and Experience:
- Information Security Programs: 6+ years of experience working with information security programs in regulated industries such as government, healthcare, or financial services.
- NIST 800-53 Compliance: 6+ years of experience analyzing and supporting the implementation of information security and privacy controls based on NIST 800-53.
- Agile Methodologies: 6+ years of experience working with agile-based methodologies in IT projects.
- Security Consulting: 6+ years of experience consulting and supporting technical staff in implementing security controls based on NIST 800-53.
- Payment Processing Systems: 6+ years of experience supporting system integration for payment processing, with a strong understanding of NACHA, EFT, PCI, and similar security requirements.
- SEC 501 Experience: Must have experience with SEC 501 standards.
Why Join Us?
This role offers the opportunity to work on significant IT projects within a hybrid work environment, allowing for a flexible and dynamic work schedule. You will be a key player in ensuring the security and integrity of critical systems, particularly in payment processing.
If you meet the above requirements and are passionate about information security, we would love to hear from you. Apply today to be a part of our innovative and security-focused team!