I have a very urgent DIRECT CLIENT requirement for Security Analyst in
Columbia,
SC. Please Let Me Know If you have available candidate, please reply with
their word resume, location, rate and contact number.
Please send the resumes at su...@cncconsulting.com
Job Title: Security Analyst
Location: Columbia, SC
Duration: 12 Months
This specific Statement of Work is for a contractor that demonstrates an
expert knowledge of IT Security, preferably advanced knowledge of
Networking, VMWare and Windows 2008. General duties include researching and
summarizing national standards, including NIST, FIPs, ISO, IRS
requirements, and state and federal laws, policies, and standards. The
position will be heavily involved in developing agency policy for outside
IT contractors, software, and hardware as it relates to functional
information technology security.
This position at the South Carolina Department of Revenue (the
“Department”) is one of multiple that will form a team of highly
experienced Information Security professionals with time sensitive
challenging projects. This contractor will be one member of a team that is
comprised of proven experts in some or all of the fields of networking,
virtual environments, security, encryption, network automation, centralized
IT management, Microsoft server, system, and networking environments.
The following product/technologies are also part of the Department’s
environment, but they are not a requirement to apply for this position.
Experience in these areas would be a plus: SANs, Group Policies, VB
scripting, Microsoft Exchange, SharePoint, and Project.
GENERAL RESPONSIBILITIES:
Assists in the development and implementation of security policies and
standards for IT related items procured by the agency (e.g., hardware and
software);
Assists in the development and implementation of security policies and
standards for IT services provided by outside contractors and third parties;
Researches and reviews various national and international security
standards (e.g., Internal Revenue Service, Federal Information Processing
(FIPS), National Institute of Standards and Technology (NIST), and
International Organization for Standardization (ISO)) and explains the
results, both orally and in writing;
Assists in the establishment of standards and controls to ensure that
information assets and technologies are adequately protected; and
Attends meetings with the Contract Attorney, General Counsel, Chief
Information Officer, Chief Information Security Officer, and Deputy
Director in order to determine agency policy as it relates to Information
Security.
SKILLS REQUIRED:
Oral and written communication skills;
Hands-on experience drafting and reviewing information technology security
policies and standards;
Experience in developing and maintaining documentation for security
policies, procedures, and best practices;
Knowledge of software development lifecycles and migrations from different
environments;
Providing continual consultation and written reports to senior management
concerning security issues;
Hands-on experience documenting and managing all aspects of security within
an enterprise organization, including but not limited to:
Firewall and IDS/IPS experience;
Virtual Private Networking (VPN);
Network access policies;
Web filters;
Publically accessible assets;
Active directory;
Security compliance for third party and/or in-house developed applications;
Virtualization and Storage area networking security; and
Anti-Virus management;
Experience preparing and submitting Security Program evaluations and
compliance reports;
Proven experience developing, implementing and administering all aspects of
a successful Security Program, including physical, technical, personnel,
procedural and electronic security;
Experience defining processes to maintain security equipment, test
intrusions, and the ensure alerting of threats; and
Working with other Department leaders, designing security components for
operations and other strategic processes, and supervising the development
and implementation of required security reporting devices and processes at
all levels.
SKILLS PREFERRED:
At least 10 years experience working as the Chief Information Security
Officer, Security Officer, Security Consultant, or Security Analyst for a
state or federal agency or large corporation;
Extensive working knowledge of Internet protocols, tools, and techniques
including but not limited to:
Virtual Private Networking (VPN);
TCP/IP, Local Area Networks (LAN), Wide Area Networks (WAN);
Network device operating systems security configuration;
Internet security; and
Internet Information Server;
Knowledge of Virtual Machine operation, strengths, and weaknesses;
Experience with VMWare ESX security;
Support of web-based applications for internal (intranet) sites and
external (Internet) sites;
Working technical knowledge of current network hardware, protocols, and
Internet standards, including TCP/IP, and DNS, DHCP; or
Experience and working knowledge of backup products and methodologies.
LOCATION:
Position will be based at the South Carolina Department of Revenue main
office, 300A Outlet Pointe Blvd., Columbia, SC 29210. Computer, phone and
access to printers, copiers and fax will be provided.
Administrative Verbal Communication Skills Yes 1
Lead Within 2 Years 6 + Years
Administrative Written Communication Skills Yes 1
Lead Within 2 Years 6 + Years
Miscellaneous Publically accessible assets No 2
Advanced Within 2 Years 2 - 4 Years
Network Security Application Security Yes 1
Lead Currently Using 6 + Years
Network Security Security - Knowledge in networking, databases,
systems and Web operations Yes 1 Lead
Within 2 Years 6 + Years
Network Security Security Information Architecture
Yes 1 Lead Currently Using 6 +
Years
Network Security Windows Security - Group Policy
Yes 2 Lead Currently Using 6 +
Years
Networking & Directories Network access policies
Yes 1 Lead Currently Using 6 +
Years
Networking & Directories User access policies Yes
1 Lead Currently Using 6 + Years
Networking & Directories Active Directory No
2 Advanced Within 2 Years 2 - 4 Years
Networking & Directories Anti-Virus management No
2 Advanced Within 2 Years 2 - 4 Years
Networking & Directories VPN - virtual private network No
2 Advanced Within 2 Years 2 - 4 Years
Program Management Software Development Lifecycle - SDLC Yes
1 Lead Currently Using 6 + Years
Protocols Firewall No 2
Advanced Within 2 Years 2 - 4 Years
Specialties Experience in developing and maintaining
documentation for policies, procedures, and best practices Yes
2 Lead Currently Using 6 + Years
Specialties NIST Security Yes 1 Lead
Currently Using 6 + Years
Web Tools Web Filters No 2 Advanced
Within 2 Years 2 - 4 Years
Thanks,
Sunny Roy
(201) 588-9460 Phone
su...@cncconsulting.com
--
You received this message because you are subscribed to the Google Groups
"oraapps" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to oraapps+unsubscr...@googlegroups.com.
To post to this group, send email to oraapps@googlegroups.com.
Visit this group at http://groups.google.com/group/oraapps.
For more options, visit https://groups.google.com/d/optout.
