Security Analyst
Security Analyst
Posted on :
11-02-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Monthly Salary
Not Disclosed
Salary Not Disclosed
Vacancy
1 Vacancy
Posted on :
11-02-2025
Job Description
Overview:
TekWissen is a global workforce management provider headquartered in Ann Arbor Michigan that offers strategic talent solutions to our clients worldwide. The below Client runs through fifteen executive departments which carry out the daytoday administration of the federal government. Popular departments like Agriculture and Rural Development Civil Rights Environment Health and Human Services Natural Resources Secretary of State. This Client has opportunities in a number of career pathways including but not limited to business and administrative support education and human services IT and computers medical and healthcare natural resources law enforcement and public safety skilled trades and more. With positions in over 18 state departments your perfect career fit is waiting for you at the client. This client is an Equal Opportunity Employer.
Job Title: Security Analyst
Location: Lansing MI 48933
Duration: 12 Months
Job Type: Hybrid
Work Type: Contract
Job Description:
- The Security Analyst is responsible for completing and maintaining system security plans (SSP) for new and existing systems.
- The system security plans are documented in the Governance Risk Compliance tool. This requires close coordination with IT project teams tech leads business and enterprise security representatives and product owners to establish and maintain processes and security controls for systems and to identify security vulnerabilities and coordinate remediation plans.
- Security Analysts are assigned resources for DTMB development projects. Security Analysts are typically not assigned resources and are available for consult if needed for Commercial off the Shelf (COTS) procurement phase projects.
- For COTS implementation phase projects Security Analysts are typically listed resources to navigate SSP/Authority to Operate (ATO) activities with the client Cyber Security to support security requirements to Go Live.
Responsibilities:
- Create SSPs via collaboration with MDOT Automation Managers System Owners System Security Administrators and project team for new applications in alignment with the Secure Application Development Life Cycle and the client Security Accreditation Process.
- Maintain SSPs for existing applications requiring ATO and those facing software and/or hardware enhancements.
- Collaborate with business representatives to establish system registration.
- Identify security testing and system scanning requirements.
- Perform risk assessments and provide responses for security controls.
- Continuously monitor plans of action and milestones and corrective action plans as they relate to the SSPs in collaboration with the MDOT Enterprise Information Management office.
- Validate respective SSPs to ensure NIST control requirements are met.
- Author recommendations associated with findings on how to improve the customers security posture in accordance with SOM Policies Standards and Procedures and NIST (National Institute of Standards and Technology) controls.
- Assist team members and vendors with proper artifact collection to satisfy assessment requirements.
- Coordination of scanning activities/enterprise activities with MCS tech leads and business areas.
- Assist with performing system Data Classifications part of the SSP/ATO process.
Required Skills:
- 1 Years experience in the IT industry analyzing and applying information security principles and practices
- 1 Years experience reviewing IT systems/applications plus basic knowledge of networking components and various operating systems
- 1 Years experience analyzing the applicable NIST Special Publications 80037 Revision 1 80053 Revision 34 or 5 and 80053A Revision 1.
- Experience working independently and in a team environment
- Strong written and verbal communication skills including the ability to explain technical matters to a nontechnical audience
- Ability to collaborate on multiple projects/efforts at a given time
- Flexibility to adjust quickly to multiple demands shifting priorities ambiguity and rapid change
Preferred/Desired Skills:
- CISSP CISA PMP and/or Security Certification.
- Experience with other Security Frameworks (ISO NIST COBIT HIPAA/HITECH etc.) and regulatory requirements (2 Years)
- Experience working with software vendors to implement security controls
TekWissen Group is an equal opportunity employer supporting workforce diversity.
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
