Information Assurance/ Security Specialist

Location: Richmond, VA
Date Posted: 01-29-2018
Position: Information Assurance/ Security Specialist
Client: State Government
Location: Downtown Richmond, VA Cost of Living
Terms: Multi-year contract
Working closely with a team, the IT Security and Audit Specialist will:
  • Act as a liaison between IT and other areas of the business to provide guidance on IT Security program level policy and control requirements
  • Work with internal, regulatory and client auditors to facilitate IT audits and assessments.
  • Receive audit findings, and manage the collection of responses and remediation plans with owners.
  • Work within the information security governance process to define control recommendations that are both efficient and effective.
  • Provide oversight and management of audit finding remediation, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, tracking 
    progress and providing status and updates to the enterprise compliance team for reporting purposes.
  • Maintain an awareness of existing and proposed security-standard-setting groups, state and federal legislation and regulations pertaining to information security.
  • Identify regulatory changes that will affect information security policy, standards and procedures, and recommends appropriate changes.
  • Respond to and provide oversight, management and support IT-related contractual documents.
  • Provide audit oversight of key regulatory frameworks outside the responsibilities of Internal Audit
  • Work with IT leadership to develop strategies and plans to enforce security requirements and address identified risks.
  • Report to IT management concerning risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance.
  • Collaborate on IT projects to ensure that IT security issues are addressed throughout the project life cycle.
  • Work with the IT department and members of the IT security team to identify, select and implement policies, standards and controls.
  • Participate in the execution of risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk, and recommend risk mitigation strategies.
  • Support service-level agreements (SLAs) to ensure that security controls are managed and maintained.
The ideal candidate will have the following:
  • A Bachelor’s Degree or equivalent A minimum of three (3) years of relevant work 
    experience in IT Security, Information Technology, or IT Audit related fields.
  • Full understanding of security policies, standards, processes and procedures.
  • Strong interpersonal and communication skills.
  • The ability to handle internal and external client needs with exceptional customer service skills. 
or
this job portal is powered by CATS