Job Title: IT Security Analyst
Location: Michigan (Hybrid - In-office 2 days per week)
Duration: 1 Year with Possible Extension
Notes:
First Round: Virtual interview via MS Teams.
Second Round: In-person interview at the Dimondale, MI office.
Screenshot photo of candidate required for virtual interviews.
A vendor representative must be present at the beginning of the virtual interview to validate the candidate.
Hybrid: In-office 2 days per week (No remote-only option).
Local and non-local candidates accepted (Non-local candidates must relocate at their own expense with no delays).
Cover Sheet (attached).
Valid Right to Represent with hybrid work schedule acknowledgment confirmed by the candidate.
Candidate's Resume (Full legal first name & last name ONLY).
Job Description:
Assist the Michigan Cyber Security, Risk, and Compliance Division Director with enterprise risk management.
Assess enterprise data security policies, processes, procedures, and controls, recommending improvements where needed.
Conduct risk assessments for specific agencies, identifying gaps in security control environments and compliance requirements.
Perform gap analysis of security requirements in agency applications according to security regulations and policies.
Guide NIST controls and other security statutory and regulatory requirements.
Act as a subject matter expert, leading and mentoring within the Risk and Compliance Division.
Enter and manage information in Keylight to complete the risk assessment process.
Assist with MiSAP Risk Assessments and contribute to the development of a Cyber Security Framework for the State of Michigan.
Work with the MCS Keylight team to improve the MiSAP process.
Perform additional cybersecurity-related tasks as assigned
Skill Years of Experience Total Experience
IT security and audit experience6+ Years
Knowledge of national/international security standards (NIST, PCI, CJIS, CMS, ISO, SOX, HIPAA, HITECH)6+ Years
Security assessments and reviews6+ Years
Enterprise risk management process6+ Years
Data security policies, processes, procedures, and controls6+ Years
Risk assessment and compliance gap analysis6+ Years
Interpretation of NIST controls and regulatory requirements6+ Years
Experience using Keylight for risk assessment processes6+ Years
Experience with MiSAP Risk Assessment6+ Years
Cybersecurity framework implementation6+ Years
Strong communication and collaboration skills6+ Years
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job...The Division of the Social Sciences at the University of Chicago invites... ...), with a specialization in Political Science, in the Master of... ...seminars, mentoring students on research projects, and helping a... .... Appointment at the rank of Assistant, Associate, or Full Instructional...
...Join the Recruiterboom Summer Internship Program Where Opportunity Meets Fun! Are you a driven, motivated individual looking to gain hands-on experience in a fast-paced, dynamic office environment? Do you want to work in Sales, Recruiting, Marketing, Communications...
...Instagram . Position Description: Reporting to the Security Operations Center Manger will partner with the Cyber Security team and across PAR Information... ...PAR is headquartered in New York. This is a work remote role. We want the best people no matter where you...
...At PwC, our people in business application consulting specialise in consulting services for a variety of business applications, helping... ...professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence...
...experts and industry experts, R&G US can provide end-to-end services in strategic planning, clinical trial design, statistical analysis, SAS programming, data management, medical writing, medical monitoring, pharmacovigilance, and Data Monitoring Committee services. R&G US...