Job Description :
Company Overview:

Creating value by bringing together the right people to achieve results is our motto. Our clients and employees say they choose to work with us because of how we work with them - with service that exceeds their expectations and a personal commitment to their success.

Our client, one of the twelve regional Reserve banks in the Fed System, seeks an accomplished Information Security Analyst.


Description:
Acts as an internal consultant to the technology needs regarding Information Security issues. Assists with adoption and implementation of the NIST-based SAFR lifecycle for assessing risk pertaining to information systems.
Assess and document risk pertaining to new technology implementations, deviations from established controls, changes to information systems, and vulnerabilities identified during security scanning events.
Provide consultation pertaining to a wide variety of Information Security programs; examples:
o Classification management (labeling, marking, safekeeping/storage, transmission, reproduction, downgrading, declassifying, and destruction) of physical and electronic records
o Vulnerability management (patching, scanning, recommended actions)
o Configuration management; system or component hardening
Conduct compliance testing activities, policy and standard gap analyses, and control testing.
Involved in the research, testing, and implementation of new technology, software, and infrastructure as well as consulting with business partners, to address security requirements and compliance.
Assist with risk assessment process discussions with asset owners and SMEs (Subject Matter Experts), clearly documenting and communicating security risks and exceptions identified.
Represent the District on various Information Security committees and work groups.

Requirements:
Bachelor’s degree in Information System or related field or equivalent work experience.
Seeking 4+ years of experience in Information Security or a related IT discipline, specializing in information security consultation, risk assessment, security compliance and threat management related activities.
Technical and operational proficiency or strong working knowledge with a wide array of computer hardware, operating systems and software.
Solid understanding of the Critical Security Controls (SANS, CSIS
Ability to conduct independent research and analyze complex requirements, including FRS, NIST and FISMA security standards, determining District impact and implementation.
Ability to analyze and assess complex technical plans (i.e. security compliance standards
Ability to understand, develop and propose changes to internal procedures in response to environmental changes.
Ability to keep up-to-date with new technologies and new threats and determine their impact.
Strong analytical, documentation and problem solving skills. Excellent project management skills.
Strong written and oral communication skills in order to communicate effectively with all levels of management, peers, organizations within the Federal Reserve System, customers, and outside vendors.
Proven ability to meet deadlines and deliver quality work in a fast paced environment.
Some experience mentoring and training employees, a plus. Ability to work in a collaborative and team-oriented environment.
Preferred Industry recognized certification in Information Security, including Certified Information Systems Security Professional (CISSP), GIAC Security Leadership Certification (GSLC), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC
Experience with common vulnerability publications and resources, including: Common Vulnerability Scoring System (CVSS), National Vulnerability Database (NVD), Common Weakness Enumeration (CWE), Common Vulnerabilities and Exposures (CVE), and Common Platform Enumeration (CPE



I''d love to talk to you if you think this position is right up your alley.

If you''re looking for rewarding employment and a company that puts its employees first, we''d like to work with you. We''re driven, people driven. We also offer group health Insurance (employee paid on a pre-tax basis

NOTE: “Candidates that are offered a position are required to pass pre-employment drug and background screening”