Design and implement enterprise security patterns to support business needs and agency KPIs.
Responsibilities
Develop technology deliverables including briefs, patterns, reports, data models, and high-level risk assessments.
Perform security compliance tasks, control evaluations, risk analysis, and exception documentation.
Collaborate with cross-functional enterprise architects to provide strategic consultation on data security and risk-averse implementation.
Research and provide written guidance on alignment with security policies, standards, and architecture governance.
Document processes and create business-focused documentation for technical and non-technical readers.
Required Skills
5+ years of experience in information security and IT risk management.
Deep experience with NIST-800 series, Cybersecurity Framework, and COBIT.
Proven ability to perform reviews of proposed changes for alignment with state and federal security regulations.
Technical expertise in at least two of the following: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensics, databases, collaboration tools, or web/mail services.
Strong background in developing and presenting information security architecture policies and standards.
Experience monitoring IT environments for compliance with security architecture policies.
Ability to translate complex technical terms into everyday language for management and external entities.
Experience working with broad cross-sections of personnel and external service providers.