Job ID: VA-690271 (96590815)
Remote VA Security Analyst with SEC 501, VA security standards/policies, IRS Pub 1075 and risk assessment experience
Location: Richmond, VA DSS
Duration: 12+ months
*local candidates strongly preferred
*candidate will work remotely until further notice.
*please do NOT submit candidates who were submitted to previous DSS IT Security Analyst reqs
Work experience with standard concepts, practices and procedures within the Information Security field. Required 6 Years
Work experience with SEC 501 Required 6 Years
Familiar with Commonwealth security standards and policies Required 6 Years
Experience with IRS Publication 1075 – Tax Information Security Guidelines Required 6 Years
Serve as a member of the Information Security Operations Team tasked with conducting security Risk Assessments (RAs) in accordance with the Commonwealth SEC501 security policy.
Provide technical assistance to develop and complete information security risk assessments (RAs) for assigned enterprise-level projects for future system deployment, and enterprise systems currently in production. RAs are to be conducted in accordance with the Commonwealth Information Security policy, SEC501. Coordinate with the agency Information Security & Risk Assessment (ISRM) staff and the Information Security Officer (ISO) during their independent validation of the RA. Also coordinate with internal operations staff for remediation of any risks and deficiencies identified in the RA.
Collaborate with IT Services senior management, Internal Audit, and VITA to manage security vulnerabilities as well as develop and publish Information Security procedures and metrics related to the RA process. Conduct security research and keeps abreast of latest security issues. Prepare IT security documentation related to RAs