IN-DCS-Info Security Analyst

Resource work as an Information Security Analyst within Information Technology Division of Department of Child Services This position is responsible for auditing and monitoring systems containing confidential information.

Resource works as a Security Analyst and performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction and typically reports to the Information Security Manager or higherlevel staff.

The essential functions of this role are as follows:
Monitors and keep supervisor informed of status of information security and confidentiality conditions including problem areas and recommended enhancement;
Interfaces with user customers to understand their security needs and implement procedures to accommodate them including training and assessment.
Assists with preparing for security audits (e.g. IRS SSA OCSE FBI SBOA) and remediating any findings; assists with creating and submitting reports relevant to security audits.
Develop information security policies and standards for protection of information systems in compliance with state and federal requirements (e.g. IRS SSA OCSE FBI IOT) and guidelines (e.g. NIST SP 80053).
Develops Standard Operating Procedures (SOP) for implementing security polices;
Recommends appropriate security safeguards to be included during development of new information technology systems and legacy systems;
Ensures maximum utilization of computer hardware and software features to secure automated systems and associated data;
Develops and implements procedures for use of information security management software;
Proposes information security software enhancements;
Performs periodic audits to assure security policies and standards are being followed and are effective.
Develops recommendations for enhancements and generates reports where necessary;
Keeps abreast of new laws and changes affecting privacy standards network security cloud security remote access and physical security;
Mentors and provides guidance to new or other staff as needed;
Performs related duties as assigned.
Assist on other task as assigned.
Thorough knowledge of information security management tools policies and standards of information security procedures;
Thorough knowledge of state and federal legislation and regulatory laws pertaining to information system security and privacy;
Thorough knowledge of software vulnerabilities vulnerabilities scanning tools and vulnerabilities remediation;
Familiarity with domain structures user authentication and digital signatures;
Ability to develop and maintain information security standards;
Ability to understand and apply complex computer logic to work;
Ability to work effectively with a wide range of information technologists including systems administrators technical support application development end users and management;
Experience in assessing security needs of teams and assist in their security training.
Ability to communicate effectively both orally and in writing;
Ability to be a team member as well as a team leader depending on the situation;
Degree in information security or technology preferred;
Security certification preferred (e.g. CISSP).
Network Admin experience preferred.
Supervisory Responsibilities/Direct Reports:
This role does not provide direct supervision to direct reports.


Required/Desired Skills
SkillRequired /DesiredAmountof ExperienceThorough knowledge of information security management tools policies and standards of information security practices 35 years experienceRequired5YearsNetwork Admin experience 13 years experienceRequired3YearsAbility to develop and maintain information security standards;Required1YearsAbility to understand and apply complex computer logic to workRequired1YearsThorough knowledge of software vulnerabilities vulnerabilities scanning tools and vulnerabilities remediationRequired1YearsAbility to work with wide range of information technologists including systems administrators technical support application development end users Required1YearsFamiliar with cybersecurity security framework (e.g. NIST ISO SOC 2 CIS Cobit etc)Required1YearsComputer security compliance and auditing experienceRequired1YearsIRS SSA computer security compliance and audit experienceRequired1YearsHIPAA experienceRequired1YearsBasic understanding of Microsoft Office SuiteRequired1YearsSecurity certification (e.g. CISSP CRISC)Required0Ability to communicate effectively both orally and in writingRequired0Degree in information security or technology Required0
Questions
No.QuestionQuestion1Absences greater than two weeks MUST be approved by CAI management in advance and contact information must be provided to CAI so that the resource can be reached during his or her absence. The Client has the right to dismiss the resource if he or she does not return to work by the agreed upon date. Do you accept this requirementQuestion2Please list candidates email address.Question3Please list the city and state where candidate currently resides.Question4Candidate must be paid BETWEEN BR and BR if selected for engagement. The provider markup for this position is 35%. Do you accept this requirementQuestion5Flexible on work schedule Monday to Friday ( Start Time 7:30 AM 8:00 AM and End Time 4:30 PM 5:00 PM )Question6Resource will work in the office Monday through Wednesday with the option to work remote on Thursday and Friday. Please confirm the resource understands this requirementQuestion7Selected resource will be required to pass a Fingerprint background check. Please confirm the resource understands this requirement.Question8This position has no overtime requirements. Please confirm the resource understands this requirement. Question9Resource must currently reside in the State of Indiana. Please confirm the resource understands this requirement. Question10There will be addition background checks and security training once hired onsite. Please confirm the resource understands this requirement.Question11In person pick of equipment unless otherwise specified. Please confirm the resource understands this requirement.