Description:
Client is seeking one parttime resource to provide technical assistance and expertise in the Governance Risk and Compliance (GRC) space of client cybersecurity team as part of the Modernization project.
At a high level the resource will produce Archer documentation support troubleshooting of general system issues system development/improvement setting up new asset record in Archer processing exception requests provide input into Archer Optimization Assessment provide solution to maintain control standard and identify general areas of improvement needed (if any) in the current set up.
The work is expected to be done remotely.
Interviews will be conducted via Microsoft Teams.
Project Schedule:
Anticipated Project Start Date: November 2024
Anticipated End Date: October 2025
Pay range: Open rate.
Desired Qualifications:
5 or more years working with Archer in a development or administration role.
2 or more years of experience implementing Archer solution in a similar environment at Federal or State agencies.
5 or more years configuring RSA Archer modules creating applications dashboards reports and workflows.
Experience analyzing business requirements and translate them into technical solutions.
Ideal resource will hold certified industry standard certifications such as Archer Certified Specialist or Archer Certified Expert.
Familiarity with security and compliance and audit assessments processes with focus on IRS NIST 80053 HIPAA and Affordable Care Act.
Knowledge of creating and managing data feeds to import and export data from various sources.
Experience in Integration (using APIs Web Services and other integration tools) Scripting (any scripting language for custom object development within RSA Archer) and Database Management (SQL for querying data and managing the Archer database)
Additional Information:
The resource will submit a weekly written report to summarize accomplishments for the week highlighting any pain points during the week and set out the plan for the following week. The report would be submitted to the identified Manager of GRC.
The selected resource needs to complete training prior to gaining access to the applicable State system(s). Security Awareness obtained through the States ELM system is required to be completed prior to work beginning.
o Security Awareness up to 1 hour typically less (consisting of Password Security Physical Security Phishing Malware Ransomware and Public WiFi).
The resource is expected to attend the weekly Office of Information Security (OIS) team meeting Thursday at 9:30 AM CST to 10:30 AM CST via Microsoft Teams to share weekly progress and accomplishment to the rest of the team.
Sample Tasks and Anticipated Weekly Schedule:
Archer Staff Augmentation | | | |
| | | |
Ongoing Tasks | Priority 1 highest | Time (hours) | Cadence |
Archer Documentation Update/create description for Application fields layouts data feeds schedules data driven events etc. End user documentation | 5th | 3 | weekly |
Troubleshooting general system issues User system access record permissions etc. Data Feed failure Advanced Workflow failure | 1st | 2 | weekly |
System development/improvement Customize system to fit different user requirements when requests are received (for findings exceptions remediation plans etc.) and attend onehour weekly meeting to provide updates. | 2nd | 3 | weekly |
New Asset record setup in Archer Reach out to SME to create new application device and business process and updating existing records and maintaining inventory of master data. | 3rd | 2 | weekly |
User Accounts Onboarding/Offboarding/Transfer (investigate who to reassign assets to update group membership etc.) | 4th | 2 | weekly |
Exception Requests Manual processing (create exception send to submitter/reviewer process extensions) | 6th | 3 | weekly |
| | Total | 15 Hours/Week |