Job Description

• This position will function as a Compliance Specialist within the Department of Technology, Management and Budget (DTMB), supporting the following Agency Services Divisions – DTMB.
• This specialist is responsible for the security compliance design, planning, implementation, and support of our customer applications.
• This position is responsible for the adherence to, compliance with and reporting on, all Federal, State and Industry technical security requirements for our customers applications.
• This position is responsible for supporting DTMB staff, working as a liaison between Agency Services and other areas, and the vendor partners.
• Clear communication and presentation skills are required.
• Must be able to clearly explain technical information to both technical and non-technical individuals.
• Our division has a portfolio of 100 applications, with varying compliance requirements including, but not limited to NIST 800-53, IRS Publication 1075, DTMB Policy, Standards, Procedures, as well as those pertaining to PHI, PI, PII.
• These multi-million-dollar systems require a Compliance Specialist to ensure compliance with policies, processes and State and Federal security mandates.
• This position will also be required to interpret the frameworks, regulations, laws, policies and GRC tool the Client and our division must adhere to.
• NIST 800-53
• Follow the IT security technical architecture design methodology and best practices.
• External Vendor contact/Communication skills
• Microsoft SharePoint
• Microsoft Excel

Nice to Haves

• Expertise for adherence to Payment Card Industry (PCI) Data Security Standards (DSS), IRS Publication 1075 regulations, and IRS Safeguards Computer Security Evaluation Matrices (SCSEMs).
• CJIS / CMS / HIPPA security frameworks
• SOC II knowledge
• Keylight (by Navex) GRC Tool

Job Types: Full-time, Contract

Pay: $40.00 - $45.00 per hour

Application Question(s):

• How many years of experience do you have as an IT Security Analyst? (minimum 4 years)
• How many years of experience do you have with NIST 800-53? (minimum 4 years)
• Do you have a knowledge of Cyber Security?

Work Location: In person