What are the responsibilities and job description for the GRC Security Analyst position at V Group Inc.?
End Client: State of South Carolina - DOA
Job Title: GRC Security Analyst
Location: Columbia SC 29210 (Remote)
Duration: 12 Months
Position Type: Contract
Hours Per Week: 40 Hr
Interview Mode: Webcam
Ceipal ID: SSC_GRC518_MA
Requirement ID: 11518
The SC department of administration, Division of Information Security (DIS) oversees the South Carolina statewide information security program as described in the
Scope of the project: This position with be perform duties as part of DIS execution of its responsibilities under the statewide information security program. DIS Responsibilities include:
- Supporting agencies during their development of the information security program with direct tactical implementation assistance.
- Developing and tracking agency information security implementation plans.
- Interview administrators, managers and third parties to aid in development of program artifacts.
- Ensuring high-level assessments of agencies’ infosec work to ensure progress is made.
- Providing high-level analysis of process and procedures work to ensure compliance with state standards.
Daily Duties / Responsibilities:
Duties include, but are not limited to:
- Interviewing business and technical owners to determine policies and procedures used for each agency process.
- Developing and tracking infosec implementation plan progress.
- Documenting information gathered during both interviews and
- Document reviews to assist with developing formal process and procedures.
- Assessing agency documentation to ensure adequate approaches are used to comply with controls.
Required skills (must include years of experience, in order of importance)
- 10 Years of Experience in Information Security and Compliance.
- 2 Years of Experience with security audits based on a standard control set as an auditor or responding information system security officer
- Must Have a Strong Working Knowledge of NIST 800-53 (2 Years of Experience)
- Prior Experience POA&M or CAP.
- Strong Communication Experience.
- Experience With Using A GRC Tool (Archer or Similar) (3 Years of Experience)
Preferred Skills (Rank in order of Importance):
- Have completed an information security plan or system security plan notebook.
- Simultaneously, manage multiple infosec work efforts.
- Knowledge of IRS 1075, HIPAA, CJIS, MARS-E and/or PCI-DSS.
- Government sector experience
Preferred Certifications:
- CISA, GSLC, or equivalent certification
_________________________________________________________________________________________________________
V Group Inc. is an IT Services company which supplies IT staffing, project management, and delivery services in software, network, help desk and all IT areas. Our primary focus is the public sector including state and federal contracts. We have multiple awards/ contracts with the following states: AR, CA, DE, FL, GA, IL, KY, MD, ME, MI, NC, NJ, NY, OH, OR, PA, SC, TX, VA, and WA. If you are considering applying for a position with V Group, or in partnering with us on a position, please feel free to contact me for any questions you may have regarding our services and the advantages we can offer you as a consultant.
Please share my contact information with others working in Information Technology.
Website: www.vgroupinc.com
LinkedIn: www.linkedin.com/company/v-group/
Facebook: www.facebook.com/VGroupIT
Twitter: www.twitter.com/vgroupinc