Job ID: MI-115106 (98190316)10a
Hybrid/Local Security Analyst with Lockpath Keylight, GRC, risk plan, PCI/DSS, IRS Pub 1075, SCSEMs, DR, NIST, Governance/Compliance experience
Location: Lansing, MI DTMB
Duration: 12 Months
Remote or On-site: Candidates MUST be local or relocate at their own expenses (with no delays) from acceptance. Will need to be onsite starting day 1 for the hybrid work schedule. NO REMOTE-ONLY OPTION.
skills:
Experience with Lockpath Keylight is a highly desirable plus.
Responsible for continual improvements of system security plan process.
Provide technical guidance and support as needed.
Act as liaison to DTMB and Treasury with the system security assessment process.
Will be responsible for data Input and data oversight into GRC tool for assigned application
system security plans.
Work with management on strategies for annual system security and risk plan development.
Follow the IT security technical architecture design methodology and best practices.
Provides technical system security expertise as it relates to the integration of systems,
security, middleware, services, database design, hardware/server, and tools, to IT project
business and technical requirement sessions and for system implementation.
Lead and coordinate with other technical resources in the overall system design,
implementation, and integration of systems with other existing systems/technologies/data
sources on multiple platforms within the agency, across multiple state agencies, Enterprise
Architecture and multiple software vendors as required.
Expertise for adherence to Payment Card Industry (PCI) Data Security Standards (DSS), IRS
Publication 1075 regulations, and IRS Safeguards Computer Security Evaluation Matrices
(SCSEMs).
Technical Documentation / Responses to address system security program requirements.
Providing input for Disaster Recovery testing and processes.
Top Skills & Years of Experience:
•Minimum 5 years IT Security Experience
•Bachelor’s Degree Required and/or 2-year degree with Security certifications (this must be the criteria if a candidate with 2-year degree is submitted)
•Experience with security protocol such as: NIST 800-53
•Professional experience with technical documentation
•Experience with Lockpath Keylight is a plus.
This position will be dedicated to the Governance, Risk, and Compliance strategy including
formal application/system reviews and documentation of the system security control tasks
completed during the system security plan phase using NIST 800-53 Rev 5 framework.
Candidate must be able to clearly discuss, explain, and document how the various systems meet
or do not meet the assigned controls; how the control is being remediated if applicable;
document and present exception requests as needed; review security assessment reports; assist
with completing Plan of Actions and Milestones.
Candidate must be able to independently lead working sessions with assigned team of both
technical and non-technical individuals.
Clear communication and presentation skills are required. Must be able to clearly explain.
technical information to both technical and non-technical individuals.
Bachelor’s Degree Required and/or 2-year degree with Security certifications (this must be the
criteria if a candidate with 2-year degree is submitted).
ID-Verification-Interview-Process-UPDATED-6.pdf
State of Michigan Hybrid Work Environment Attestation (12).docx