Title: Junior IT Security Analyst with SEC 501

Location: Remote

Length: Long term

Restriction: W2 or C2C

Description:

** **Long term**Remote; must pick up laptop at Richmond VA by hand ; reasonable expenses will be paid for this

Descripition:

Participate as a security analyst assigned to IT projects tasked with gathering and reviewing artifacts as part of the controls assessment process related to Commonwealth SEC530 and IRS PUB1075 security standards.
Will participate as a member of the project team reviewing user stories to identify the necessary security controls to be included for success criteria. Will assist the project team in identifying the necessary deliverables and artifacts which demonstrate control implementation for the user stories.
Coordinate artifact approval with agency Information Security and Risk Management (ISRM) team. Support the identification and documentation of Plan of Actions and Milestones for controls not met with Technology Service Cyber Security division and project team.
Required Skills

7+years Work experience with information security programs in regulated industries such as government, healthcare, and/or financial services
Work experience with analyzing and supporting the implementation of information security and privacy controls based on NIST 800-53
Experience working with agile based methodologies
Experience in consulting and supporting technical staff in implementing security controls based on NIST 800-53
SEC 501