Govt Information Security Auditor (CISSP/CISM) with vendor management, risk/vulnerability management, NIST, CIS Top 20 and governance experience

Job ID: MI-592578 (913390426)

Govt Information Security Auditor (CISSP/CISM) with vendor management, risk/vulnerability management, NIST, CIS Top 20 and governance experience

Location: Dimondale, MI (DTMB)
Duration: 12 months
Interview Type: In Person Only

Skill Required / Desired Amount of Experience
Experience as a Director or Senior Manager in Federal, State or Local Government Required 5 Years
Experience in Information Technology Required 5 Years
Experience in responding to IT or Security Audits Required 3 Years
Experience with IT Vendors and Outsourcing Required 3 Years
Bachelor’s Degree Required
Experience in Risk Management Highly desired 5 Years
Experience in Vulnerability Management Highly desired 3 Years
Experience in Security Awareness & Training Programs Highly desired 3 Years
Familiarity of Security Controls (NIST, CIS Top 20, Regulatory) Highly desired 2 Years
Master’s Degree Highly desired
Experience in Governance, Risk and Compliance Programs, Tools, Processes Desired 3 Years
Experience in IT, Security or Management Consulting Desired 3 Years
Security Certifications (CISSP, CISM, or equivalent) Desired

Under the leadership of the State of Michigan Chief Security Officer, play a lead role in the expansion and maturity of the Michigan cybersecurity ecosystem into municipalities and small businesses. Job content includes, but is not limited to the following:

• Promote security awareness through local gov’t and small business channels
• Create and host a collaborative forum for Michigan IT and Security Leaders
• Connect IT and Security Leaders with existing security offerings at the Federal and State level
• Pilot security offerings and programs with municipalities and small businesses
• Develop strategic plans and roadmaps for shared security protection capabilities
• Coordinate with local government entities regarding Emergency Management planning and response
• Act in the capacity of a shared or virtual CISO (CISO As A Service)

MI_E-592578.doc

MI_Resume_Template-JT-592578.doc

Leave a Reply