IT Security Analyst

IT Security Analyst 3

[Lansing MI, MI] |   2023-06-08 10:45:49

Apply Now

Share Job 

Job Code : 2023-MY3TECH0401

Job: IT Security Analyst 3

Location Lansing MI

Duration: 12 Months Contract

Top Skills & Years of Experience:

- 5+ years of experience with cybersecurity related job functions. 

- Strong knowledge and understanding of compliance regulations and their related frameworks, such as:

               - NIST SP800-53 Rev 4 & 5

               - Criminal Justice Information Services (CJIS) Security Policy. Version 5.9

- Evaluate the appropriateness of the audit response to changes in risk ratings.

- Expertise in the risk and controls questionnaire-based risk identification, control evaluation, testing, sampling methodologies, technology controls, audit engagement processes, controls substantiation.

- Excellent verbal and written communication skills.

- Experience with Criminal Justice Information systems is desired

Candidates MUST be able to speak to skills listed on resume.

Clear and concise written and verbal communication is crucial to success and productivity in this role.

Position Description – MSP – IT Security Analyst 3

Skills/Technologies/Experience Needed:

• 5+ years of experience with cybersecurity related job functions. 

• Preferred: Bachelor’s Degree in cybersecurity or related field is highly preferred, Cybersecurity certifications are a plus

•     Strong knowledge and understanding of information technology systems and services to include:

•                 Virtualization

•                 Containerization (Docker)

•                 Cloud Hosting Operations and Technologies

•                        IaaS

•                        PaaS

•                        SaaS

•                 Windows Workstations/Servers Functionalities

•                 Linux Server Functionalities

•                 Identification and Authentication processes and technologies (SSO/Reverse     Proxies)

•                 Encryption and Cryptography

•                 Disaster Recovery and Business Continuity processes

•                 Computer Networking

• In-depth knowledge and understanding of compliance practices and methodologies, including risk assessment, monitoring, surveillance, and testing activities.

• Desire to work in a collaborative environment, develop and drive strategic direction contribute day-to-day on implementing tactical solutions.

• Strong knowledge and understanding of compliance regulations and their related frameworks, such as:

•               NIST SP800-53 Rev 4 & 5

•               Criminal Justice Information Services (CJIS) Security Policy. Version 5.9

•               The Privacy Act of 1974

•               The Health Insurance Portability and Accountability Act of 1996 (HIPAA)

•               The Family Educational Rights and Privacy Act (FERPA)

• Willingness to serve as a risk management expert providing meaningful input to ensure risk drivers are appropriately considered, assessed, and prioritized.

• Evaluate the appropriateness of the audit response to changes in risk ratings.

• Expertise in the risk and controls questionnaire-based risk identification, control evaluation, testing, sampling methodologies, technology controls, audit engagement processes, controls substantiation.

• General knowledge of the Secure Application Development Lifecycle (SADLC) and the Software Development Lifecycle (SDLC) processes and practices.

• Excellent analytical and problem-solving skills

• Self-motivated with strong attention to detail

• Excellent verbal and written communication skills.

• Experience with Criminal Justice Information systems is desired

• Experience leading cyber security initiatives and projects   

• Strong communication skills are a must for success in this role