Security Analyst

Innosoul inc
Work from homeLansing, United States of America
Full Time
onsite
3mo ago
undisclosed

Apply on

Original
Simplified

Job Description

Job ID: MI-125082

Hybrid/Local Security Analyst with audit, NIST, PCI, CJIS, CMS, ISO, SOX, HIPAA, HITECH, and other regulatory requirements experience

Location: Dimondale, MI (DTMB)
Duration: 12 Months
Position: 1
Candidates MUST be local to the greater Lansing, MI area. Manager is not interested in candidates who need to relocate at this time. Will need to be onsite starting day 1 for a hybrid work schedule. NO REMOTE ONLY OPTION.

Skills:
Top Requirements:
Expert knowledge around NIST Controls and ability to perform risk assessments.
Ability to coach/train other team members to help improve the process.
Must have excellent communication skills. Will work as a liaison to bridge the gap
between technical and business audiences. This role will be customer facing.

Daily tasks include:
1. Assist the Michigan Cyber Security, Risk and Compliance Division Director with the
enterprise risk management process.
2. Assess the effectiveness of enterprise data security policies, processes, procedures and
controls against established standards, guidelines and requirements and identify
improvement actions required to maintain the appropriate level of data protection and
suggest changes where appropriate.
3. Assist specific agencies with State of Michigan risk assessment process and identify gaps
in security control environment and compliance requirements.
4. Perform gap analysis of security requirements implemented within the agency
application(s) according to security statute, regulation, standards, and SOM policies.
5. Provide guidance to Agency and DTMB Agency Services staff with standard
interpretation of NIST controls and other security statutory and regulatory
requirements.
6. Subject matter expert leading and mentoring others within the Risk and Compliance
Division.
7. Assist, enter information in the Keylight, complete risk assessment process within the
state of Michigan.
8. Assist with MiSAP Risk Assessment volume of work for agencies.
9. Assist with establishing Cyber Security Framework for the State of Michigan
10. Work with MCS Keylight team in improving MiSAP process.
11. Other cyber security related tasks as assigned.

Description:
Short Job Description
Monitor and advise on information security issues related to the systems and workflow
at an agency to ensure the internal IT security controls for an agency are appropriate
and operating as intended.

Long Job Description
Six (6) or more years’ experience with IT security and audit experience with
extensive knowledge of national/international security standards including NIST,
PCI, CJIS, CMS, ISO, SOX, HIPAA, HITECH, and other regulatory requirements.
Knowledge of security standards and progressive experience performing security
assessments, and reviews.

Report this job