SIGNUP
Back to Jobs
XX
Cyber Security AnalystAppSixer LLCUnited States
Apply Now
XX

Cyber Security Analyst

AppSixer LLC
  • US
    United States
  • US
    United States
Apply Now

About

Seeking a C2C candidate located in the specified area. The Office of Information Services (OIS) manages infrastructure, applications, and information that enable the Maine Department of the Secretary of State (SoS) to provide services to citizens and businesses in the State of Maine. The OIS requires information security services to assist with implementation of the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) 2.0 and preparation for an independent, third-party assessment of its information system and applications. Work under the guidance of the OIS Information Security Officer and assist with implementing the NIST Cyber Security Framework 2.0 for a Moderate impact information system by gathering information, developing foundational documents, such as a System Security Plan, Minimum Security Control Implementation (Common, Shared, Tailored), Business Impact Analysis, Information System Contingency Plan, Change Management Plan, etc., and documenting applicable security controls and status (implemented, partially implemented or not implemented). The individual will perform the following: "
Gather information by identifying and reviewing existing documents, policies, and procedures; interviewing technical subject matter experts, stakeholders, and SoS operating units; and examining system outputs and artifacts. "
Utilize the gathered information to create and maintain documentation that addresses applicable security controls for the SoS information system. "
Create and maintain a plan of actions and milestones for identified security control gaps. "
Collaborate with the Department CIO, the OIS Information Security team, and OIS managers to document, implement, and monitor the information security controls for the SoS Information System Top Skills: "
Extended Detection and Response "
Security Information & Event Management Systems "
Risk Assessment "
Technical Security Controls Skillset "
Bachelor's degree in a relevant Information Technology field "
5 or more years of experience in information security, including leadership roles "
Hands-on experience in risk management, information security assessment, security architecture, and incident response. "
Strong knowledge of IT infrastructure is a plus "
Familiarity with NIST standards (Risk Management Framework or Cybersecurity Framework) "
A relevant certification is preferred (e.g., CISSP, CISM, CISA) "
Strong communications and writing skills are required
  • United States

Languages

  • English
Notice for Users

This job comes from a TieTalent partner platform. Click "Apply Now" to submit your application directly on their site.

Apply Now