Security Analyst - Hybrid

Title:

Security Analyst -

Hybrid Location:

Lansing, MI Length :

Long term

Restriction:

w2 or c2c

Description:

• WebCam Interview
• Very long term project; initial PO for 1 year and usually the project goes for 3-5 years with this customer
• Hybrid; 2 days a week onsite
• Job Description Develops and implements risk policies, standards, and procedures (PSP) per applicable privacy and security framework to address audit gaps.

Provides risk and compliance related support to the Security Accreditation Process Team and MDOC Information Security Officer (ISO) in best aligning policies/procedures with relevant Plan of Actions and Milestones (POAM). Reviews, analyzes and identifies opportunities and leads to PSP to reduce policy burden on enterprise and increase the proper alignment across the agency. Properly manages potential policy changes and impacts, risk-based recommendations, and relevant resolution/mitigation plans. Facilitates cross-functional team meetings to best reach agreement on the most effective and sustainable PSP in various risk and compliance areas. Communicates and socializes Security policy and risk management throughout the organization and gather feedback where appropriate. Manage the processes to streamline PSP. Required Qualifications Candidates must have 1-2+ years with each of the following:

CJIS NIST FERPA

Keylight FOIA System Security Plans Application Security Scanning Plan of Action Milestones (POAMs) Required Skills 1-2+ years of experience with CJIS 1-2+ years of experience with NIST 1-2+ years of experience with FERPA 1-2+ years of experience with Keylight 1-2+ years of experience with FOIA 1-2+ years of experience with System Security Plans 1-2+ years of experience with Application Security Scanning 1-2+ years of experience with Plan of Action Milestones (POAMs)