Perform PCI, SOC2, ISO, and applicable State of Florida cybersecurity controls-related reviews to ensure that current, new, and technology infrastructure complies with these standards and Department's security policies.
Plan and perform IT security controls effectiveness. Manage remediation efforts for the identified gaps including assessment of new or enhanced implemented controls.
Maintain IT security risk and compliance matrix and performs management reporting. This will include IT systems controls, and business process risks to meet compliance requirements. Provide risk mitigation strategies
Maintain Third Party Risk Management Program (TPRM) and analyze SOC-2 and other reporting including mapping to key IT security and compliance controls such as NIST, PCI, and COBIT.
Manage IT security vulnerabilities management program aligned with PCI and NIST standards.
Identifying and ranking the value, sensitivity, and criticality of the operations and assets that could be affected should a threat materialize in order to determine which operations and assets are the most important.
For the most critical and sensitive assets and operations, estimating the potential losses or damage that could occur if a threat materializes, including recovery costs.
Identifying cost-effective actions to mitigate and reduce risk. These actions can include implementing new organizational policies and procedures as well as the design of technical or physical controls.
Coordinating, tracking, and verifying remediation of audit findings.
Documenting the results and developing a plan of action and milestones for mitigating any identified risk.
Produce formal audit reports based on ISACA Audit Standards.
Promotes compliance with regulatory requirements (e.g. PCI DSS) and IT best practices.
Qualifications :
7-10 years of IT Audit experience (CISA certified preferred)
3 years of IT Risk Management lifecycle experience
3 years of hands-on technical experience (e.g. developer, system administrator)
Experience working with NIST 800-30 Risk Assessment Standard
Extensive experience with IT General Controls evaluation and design
Advanced skill level in business process mapping and documentation as well as policy and procedure development
Recent experience in Information Security with up-to-date knowledge of the current threat landscape.
Solid understanding of PCI DSS standards
Education and Certifications :
Bachelor's Degree in Computer Science, Information Systems, Business Administration, or other related field and / or equivalent work experience.
CISA and CISSP certifications (preferred).
Create a job alert for this search
Security Analyst • Reston, VA, United States
Related jobs
Promoted
Security Analyst
Synergy ServicesReston, VA, United States
Full-time
Synergy Business Innovation & Solutions is a premier implementer of cutting-edge software solutions.Synergy brings the experience and expertise necessary to deliver capability that provides tangibl...Show moreLast updated: 4 days ago
Promoted
Security Analyst - Sr TS / SCI w / Poly
General Dynamics Information TechnologyChantilly, VA, United States
Full-time
Clearance Level Must Be Able to Obtain : .Background Investigations,Data Entry,Microsoft Office,Personnel Security Management.
Security Analysts are responsible for the coordination, background invest...Show moreLast updated: 4 days ago
Security Analyst
Diligent Consulting IncDC Metro, DC, US
Full-time
Quick Apply
Security Analyst (Contingent Upon Award) Hiring Company : Diligent Consulting Inc.Government Publishing Office (GPO) Location : Washington, D.
Hybrid / On-site) Remote : Need to be within commuting...Show moreLast updated: 30+ days ago
Promoted
Security Analyst
SGI GlobalWashington, DC, United States
Full-time
Washington, DC, USA | Ability to obtain clearance | Full Time.SGI Global is seeking a Security Analyst to support the U.Government Publishing Office (GPO).
The Security Analyst will play a pivotal r...Show moreLast updated: 30+ days ago
Promoted
Security Analyst
Hoplite Solutions LLCChantilly, VA, United States
Full-time
Hoplite Solutions is on the front lines of cyber defense, delivering innovative, mission-driven solutions to meet today's most complex security challenges.
We are looking for a highly motivated Secu...Show moreLast updated: 1 day ago
Security Analyst
TCG, Inc.Washington, DC, USA
Full-time
Quick Apply
You've stumbled upon the rare B Corp government contractor!.At TCG, we aim to prove that businesses can be good to their employees and responsible to their community while being profitable.We're an...Show moreLast updated: 14 days ago
Promoted
Acquisition Security Analyst
Global Resource SolutionsArlington, VA, United States
Full-time
Global Resource Solutions, Inc.GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Acquisition Security Analyst.
Summary : The Acquisition Secur...Show moreLast updated: 30+ days ago
Promoted
Sr. Security Analyst
Knowledge Management, Inc.Sterling, VA, United States
Full-time
KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements.
KMI is a Minority Business Enterprise (MBE) and Small D...Show moreLast updated: 4 days ago
Promoted
Defensive Security Analyst-Washington, DC
SpecterOpsWashington, DC, United States
Full-time
SpecterOps is looking for candidates to support Security Operations at a SpecterOps customer site working directly with client personnel and systems.
Candidates will independently support the client...Show moreLast updated: 30+ days ago
Promoted
Acquisition Security Analyst
gTANGIBLEArlington, VA, United States
Full-time
TANGIBLE Corporation (gTC), www.S corporation and a registered Government contractor that provides services and solutions in : .
Professional, Administrative, and Management Support.Mission and Warfig...Show moreLast updated: 4 days ago
Promoted
Security Analyst
Leidos IncAlexandria, VA, United States
Full-time
Leidos is seeking a Security Engineer to support the execution of strategic, operational, and organizational PPSM objectives.
This position can be based out of any of our three locations - Alexandri...Show moreLast updated: 25 days ago
Promoted
FLEX Edge Security Analyst
MarriottBethesda, MD, United States
Full-time +1
Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States, 20814VIEW ON MAP ().The Edge Security Analyst will assist in the deployment, management, and optimization of Aka...Show moreLast updated: 30+ days ago
Promoted
New!
SOC Security Analyst L3
BlueVoyantCollege Park, MD, United States
Full-time
Direct message the job poster from BlueVoyant.Location : The requirement has been updated to work out of the College Park, Maryland office 2 - 3 days per week.
Commercial SOC operates on a four days ...Show moreLast updated: 9 hours ago
Promoted
Senior Security Analyst
Media TrustMcLean, VA, United States
Full-time
The Media Trust is hiring a Senior Security Analyst, AdTech Threat Detection to join our Digital Security and Operations team to lead investigations into malicious behavior within the programmatic ...Show moreLast updated: 30+ days ago
Promoted
Cyber Security Analyst
LeidosHyattsville, MD, US
Full-time
Leidos Enterprise & Cyber Solutions Defense group is seeking a Cyber Security Analyst to support the C5ISR DCSB contract for a Full Time opening.
This position is supporting US Army Command, Con...Show moreLast updated: 1 day ago
Promoted
Security Analyst - Dedicated GSOC
Global GuardianMcLean, VA, United States
Full-time
We are a leading provider of emergency medical and security solutions for corporations and individuals.Our 24 / 7 Operations Centers in Charlotte, NC, and McLean, VA, identify, monitor, and respond t...Show moreLast updated: 4 days ago
Promoted
Security Analyst
TCGWashington, DC, United States
Full-time
You've stumbled upon the rare B Corp government contractor!.At TCG, we aim to prove that businesses can be good to their employees and responsible to their community while being profitable.We're an...Show moreLast updated: 4 days ago
Promoted
integration & Security Analyst in
RIT Solutions, Inc.Reston, VA, United States
Full-time
Bachelor's Degree in Computer Science, Information Systems or other related field.IT and security work experience with a broad range of exposure to systems analysis, applications development, datab...Show moreLast updated: 4 days ago