What are the responsibilities and job description for the Information Security Analyst position at V2Soft?
Job Summary:
Responsible for analyzing the organization's information security environment and supporting the development, implementation, and maintenance of security controls to protect information assets from unauthorized access, modification, disclosure, destruction, or loss. Collaborate with management, application development teams, risk and compliance professionals, auditors, facilities, and security personnel to identify security risks, implement effective security strategies, and ensure information assets are protected in accordance with organizational policies, industry standards, and regulatory requirements.
Must Have Skillsets:
- 6 years experience required.
- Deep understanding of NIST 800-171 and NIST 800-53 controls and compliance requirements.
- Prior experience with U.S. Government IT compliance requirements - in particular Cybersecurity Maturity Model Certification (CMMC).
- Solid understanding of government Information Security regulations, pertinent control frameworks, and required compliance documentation. Experience in developing and maintaining System Security Plans (SSPs).
- Strong written and verbal communication skills across multiple channels and organizational levels and the ability to research and interpret regulatory requirements, providing concise summaries to business partners and to senior leadership. Skilled in drafting and interpreting policies and procedures.
- Practical audit and control testing experience with the ability to manage projects and drive actions across functional areas.
Education and Qualifications:
- BS/BA degree with three (3) or more years of relevant experience in related field or any combination or equivalent
- Experience in data administration and security methods, plus experience in various database design techniques; familiarity with multi-platform environments, and IT auditing.