Dear Partners, Please send resumes only to *[email protected]* * Information Security Analyst
*Location Boston Duration: 3 months Interview requirements- initial contact by phone, interview in person *Summary:* Review information security policies and procedures and security assessment questionnaires for compliance with applicable security policies, standards, legal and regulatory requirements. Assess gaps in security, score according to findings, and document associated remediation instructions.** * * *Scope of Services: *** Review agency provided information security policies and procedures to review for compliance with State, Federal, Contractual, and Enterprise Security Policy obligations. Compile gap matrices detailing security gaps between State, Federal, Contractual, and Enterprise Policy obligations with agency submitted policies and documentation. Document and catalog security gaps for each agency by ISO 27001 security domain (according to the ITD Enterprise Information Security Policy framework), and communicate such gap requirements to identified agency staff. Interface with ITD staff to ensure responses are accurate and complete. Field and respond to questions from agencies regarding their submission requirements, timeframes, and content. Review agency provided information security self assessment questionnaires to review for compliance with Enterprise Security Policy obligations and security best practices and for the identification of the locations and type of Personal Information managed or used. Compile gap matrices detailing security gaps between agency submitted questionnaires and enterprise requirements. Document and catalog security gaps according to the ITD Enterprise Information Security Policy framework, and communicate such gap requirements to identified agency staff. Interface with ITD staff to ensure responses are accurate and complete. Field and respond to questions from agencies regarding their submission requirements, timeframes, and content. *Qualification: *** · 3-5 years IT Security experience · Experience drafting and reviewing information security polices · 2+ years IT Security Audit and/or IT Security Assessment experience · ISO 17799 and/or ISO 27001 or 27002 experience · 2+ years Risk Assessment experience · CISSP certification a plus · ISO 27001 or ISO 27002 certification a plus · Excellent oral and written communications skills · A self starter with a demonstrated ability to work independently Thanks & regards, Tej Kumar XpertTech Inc Certified Minority Business Enterprise-(State of MA) 21 Cummings Park, Suite 252 Woburn, MA – 01801, URL: http://www.xperttech.com/ Email: [email protected] <[email protected]> Gmail: [email protected] <[email protected]> --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Oracle-Distribution" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/Oracle-Distribution -~----------~----~----~----~------~----~------~--~---
