Information Security Architect

Direct message the job poster from Info Stride

Scope of the project:

• The client is tasked with ensuring compliance with state guidelines. This position will be performing those services including:
• Supporting agencies during their development of the information security program with direct tactical implementation assistance.
• Developing and tracking agency information security implementation plans.
• Interviewing administrators, managers, and third parties to aid in the development of program artifacts.
• Ensuring high-level assessments of agencies' infosec work to ensure progress is made.
• Providing high-level analysis of process and procedures work to ensure compliance with state standards.

Daily duties / responsibilities:

• The implementation assistance would include, but is not limited to:
• Interviewing business and technical owners to determine policies and procedures used for each agency process.
• Developing and tracking infosec implementation plan progress.
• Documenting information gathered during both interviews and document reviews to assist with developing formal processes and procedures.
• Assessing agency documentation to ensure adequate approaches are used to comply with controls.
• Facilitating agency status reporting.
• Collaborating, often onsite at agency locations, with agencies to provide recommendations for compliance.

Required skills:

• Have completed an information security plan or system security plan notebook.
• Prior experience working with FISMA standards.
• Must have a strong working knowledge of NIST 800-53.
• Prior experience with POA&M or CAP.
• Strong communication experience (written and verbal).

Preferred skills (rank in order of importance):

• Simultaneously manage multiple infosec work efforts.
• Strong schedule management and resource planning skills.
• Ability to work at a high volume and fast pace.
• Strong collaborator and ability to meet deadlines.
• Knowledge of IRS 1075, HIPAA, CJIS, MARS-E and/or PCI-DSS.
• Ability to identify, map, and re-engineer business processes.

Certification:

• CISA or GSLC or Equivalent

• Mid-Senior level

• Contract

• Information Technology

• IT Services and IT Consulting and Government Administration