Description

You will provide strategic security consultation and technical guidance to align business needs with risk-averse implementation methodologies.

Responsibilities

  • Design and implement enterprise security and technology patterns.
  • Develop roadmaps and strategies to support agency KPIs in partnership with architects and technical teams.
  • Perform security compliance, control evaluation, risk analysis, and exception documentation.
  • Create business-focused documentation and script narratives for stakeholders with varying technical expertise.
  • Research and provide written guidance on alignment with security policies, standards, and architecture governance.

Required Skills

  • 5+ years of experience in Information Security principles, including trends, controls, and architecture.
  • 5+ years of experience in IT Security Governance and Compliance.
  • 5+ years of experience in business writing and technical presentation.
  • 4+ years of experience in Cybersecurity, Government technology implementation, or IT Governance.
  • Practical experience with IT risk management, identity and access management, and business continuity/disaster recovery planning.
  • Substantial technical experience in at least two: Cloud technologies, IAM, Vulnerability Management, firewalls, computer forensics, databases, or web/mail services.
  • Familiarity with NIST SP 800-53 or Commonwealth of Virginia Information Security Standards.
  • Ability to monitor IT environments for compliance with security architecture policies.
  • Bachelor's degree in a related field.

Preferred Skills

  • Practical experience with security awareness education and incident management.

Education

Bachelor's degree