Complete Description:
**Local candidates strongly preferred
**Only personal interviews will be conducted, no exceptions
Support the VDH Information Security Office and CIO by working directly with system business owners on Information Security Program documentation for compliance with Commonwealth Security Standards.
IT Security Analyst 3
Years of Experience:
5 or more years of experience in the field - Demonstrated experience in the development of Information Security Program documentation is required.
Job Description:
Works directly with the VDH ISO to develop the required Information Security program elements for individual VDH business units. Must be able to work independently with business units and develop detailed documents in support of the IS Program.
Conduct agency-wide (office specific) risk assessments, continuity of operations and disaster recovery plans for compliance with the Commonwealth Security Standards. Conducting working meetings with individual business offices to develop all elementsof the Information Security program documentation. Responding to audit plans and assessments. Work directly with the VDH ISO and CIO on all manner of security needs within the agency. Create, manage and maintain user security awareness. Conduct security research and keeps abreast of latest security issues. Conduct daily operational tasks in support of the VDH Information Security Program.
Work directly with information system/office business owners to develop Information Security Program elements (procedures, policies, documentation) for compliance with all Commonwealth Security standards (SEC501-07). Perform and document security/risk assessments of information systems related to the primary mission functions of the agency. Working with the VDH ISO, update the Agency Risk Assessment, Business Impact Analysis, and IT COOP. Perform day-to-day operational duties related to information security, disaster recovery, and continuity of operations. This may include research, documentation and user support under the direction of the VDH ISO
Coordinate and execute IT security related projects for the agency. Coordinate response to information security incidents. Develop and publish Information Security policies, procedures, standards and guidelines based on knowledge of best practices and compliance with Commonwealth IT Security policies, standards, and guidelines.
Prepares IT security documentation, including department policies and procedures, agency notifications, Web content, and alerts.
Skill
Required / Desired
Amount
of Experience
Demonstrated experience developing/implementing information security standards within the Commonwealth Security standards
Required
3
Years
Demonstrated knowledge of Information Security standards, industry best practices, and documentation of Oracle and SQL systems
Required
3
Years
Demonstrated experience leading the development and delivery of Information Security training, workshops, RAs, BIAs, and technical documentation
Required
2
Years
Experience as the team lead or manager on complex information system security project(s)
Required
2
Years
Experience working under the Commonwealth of Virginia Security Standards and Policies
Highly desired
2
Years
Experience in problem solving and research to address complex issues related to information security
Highly desired
3
Years
Use of MS Office tools for the development of training, presentation, and document materials
Required
3
Years
Experience meeting state or federal project requirements
Desired
2
Years