Security Architect
Hire IT People, LLC
Job Seekers, Please send resumes to resumes@hireitpeople.com Security Architect - with University/College experience preferred
Warwick, RI
7+ month contract (extensions possible).
Requirements:CISM Certified Information Security ManagerCIPP/G Certified Information Privacy Professional/GovernmentNSA IAM National Security Agency INFOSEC Assessment Methodology (IAM)HITRUSTOverview:
The Department of Administration/Division of Purchases, requests mini-bids from MPA 230 firms to remediate technology and programmatic gaps identified in a recently completed risk assessment. In accordance with the terms of this solicitation, the State's General Conditions of Purchase.
The successful vendor must provide the following services in accordance with the NIST Cyber Security Framework and associated controls:
Data Classification
Identify and inventory business information against confidentiality, integrity and availability requirements;Identify ownership at the departmental level;Determine where information is stored, processed and handled;Identify business partners or 3rd parties that have access to information;Preparation for information security control implementation.Security Architecture Plan
Define Baseline Security LevelsBased on Critical business information and its value (Data Classification)Considers specific industry requirements for control selectionDocuments a formal written Security Architecture PlanDescribes the levels and integration with Data ClassificationDocuments a detailed System Security MatrixIdentifies unique control requirements for the baselines and on a system-by-system basis, as neededEnables identification of exceptionsIdentifies system owners and responsibilitiesPolicy Development
Develop, document and optionally implement organizational cybersecurity policyEstablish security expectations for people, process and technologyEnsure compliance with regulatory requirementsDefine consequences of policy violationsEstablish the Policy Management processOn-Call Information Security Services
Address specific, unique cybersecurity tasks utilizing industry standards and highly-certified expertsAwareness
Educate personnel regarding common security threats, attacks and consequencesEducate personnel regarding policies, roles and responsibilitiesEducate personnel regarding identifying and reporting incidentsChange personnel behaviors and reduce personnel riskProvide measurable improvements in personnel security behaviors and decision-makingEnsure compliance with regulatory requirementsDevelop a culture of security.
Warwick, RI
7+ month contract (extensions possible).
Requirements:CISM Certified Information Security ManagerCIPP/G Certified Information Privacy Professional/GovernmentNSA IAM National Security Agency INFOSEC Assessment Methodology (IAM)HITRUSTOverview:
The Department of Administration/Division of Purchases, requests mini-bids from MPA 230 firms to remediate technology and programmatic gaps identified in a recently completed risk assessment. In accordance with the terms of this solicitation, the State's General Conditions of Purchase.
The successful vendor must provide the following services in accordance with the NIST Cyber Security Framework and associated controls:
Data Classification
Identify and inventory business information against confidentiality, integrity and availability requirements;Identify ownership at the departmental level;Determine where information is stored, processed and handled;Identify business partners or 3rd parties that have access to information;Preparation for information security control implementation.Security Architecture Plan
Define Baseline Security LevelsBased on Critical business information and its value (Data Classification)Considers specific industry requirements for control selectionDocuments a formal written Security Architecture PlanDescribes the levels and integration with Data ClassificationDocuments a detailed System Security MatrixIdentifies unique control requirements for the baselines and on a system-by-system basis, as neededEnables identification of exceptionsIdentifies system owners and responsibilitiesPolicy Development
Develop, document and optionally implement organizational cybersecurity policyEstablish security expectations for people, process and technologyEnsure compliance with regulatory requirementsDefine consequences of policy violationsEstablish the Policy Management processOn-Call Information Security Services
Address specific, unique cybersecurity tasks utilizing industry standards and highly-certified expertsAwareness
Educate personnel regarding common security threats, attacks and consequencesEducate personnel regarding policies, roles and responsibilitiesEducate personnel regarding identifying and reporting incidentsChange personnel behaviors and reduce personnel riskProvide measurable improvements in personnel security behaviors and decision-makingEnsure compliance with regulatory requirementsDevelop a culture of security.
Confirm your E-mail: Send Email
All Jobs from Hire IT People, LLC