Job Description :
Duties *
Information security analysts – Tech Writer are responsible for creating security and operational documentation. Their
main duties include but not limited to:
1. Doing research, collecting data and creating high quality documentation.
2. Authoring Security Policy Document, Security Procedure Document, System Security Plan, System Design Document, Data and Information Flows, System Configuration Settings Document
3. The candidate must articulate how the systems are designed with security and articulate the configuration/setting related to every control and policy in compliance frameworks like SOC2 and SOC3, FedRAMP, , ISO27001, CUI and GDPR.
4. The candidate must have enough deep expertise in security to understand how the security tools and technologies are implemented and then convert them into auditor and business and executive facing security documents.
5. The candidate needs to establish and follow writing style guide. Create consistent, cohesive content, and the best possible documentation for our customer audits, third-party assessments and compliance.
6. The candidate must work with developers, QA, PMs, auditor and information security people to gather to required artifacts and document evidence.
7. Create internal and external documents (and content) explaining complex security information in a clear and concise manner.
8. Create a process to support and maintain currency of our documentations in response to industry, regulatory, or product changes.
9. Conduct discovery and research to determine what changes are required to existing assets, assess which assets are impacted by the changes, and draft new language to incorporate into the assets.
10. Support our teams as a subject matter expert in cloud security, DevOps and DevSecOps documentation
11. The candidate must have worked one compliance frameworks like ISO27001, FedRAMP (SSP''s), CUI, GDPR, SOC2 or SOC3
12. The candidate must have experience in Third-party audit process, articulating auditing gaps.

Skills *
Cloud Product security analysts -Technical writer. They pay close attention to detail, have advanced knowledge of security and compliance frameworks( FedRAMP, ISO 27001 CUI, GDPR, SOCs and SOC3 Knowledge of cloud platforms (e.g., AWS, GCP, Microsoft Azure), and are enthusiastic in writing about cloud-computing, containers, and orchestration technologies. Must be able to work independently in a dynamic environment with globally distributed team members. • Minimum 6 years of proven technical writing experience with topic-based writing and delivering content to enable a rich and engaging learning experience. Experience preparing patent documentation is a plus.Proficient with documentation tools like wiki, confluence is a must

Writing Samples :
The candidates are requested to provide writing samples (like public blogs etc., which is owned by the candidate ) for shortlisting. The candidate MUST NOT share any confidential data.

Education *
A bachelor''s degree in information technology or network security is usually needed to work in this kind of position.
Years of experience in the field and/or additional IT certifications are usually a plus. 10+ years of experience in security with 6+ years in risk frameworks and security governance and security technical writing

Skills:
Required
ARTICULATE
AUDIT
AUDITING
DOCUMENTATION
GCP
Additional
NETWORK SECURITY
SUBJECT MATTER EXPERT
SYSTEM CONFIGURATION
TECHNICAL WRITER
GOVERNANCE
INFORMATION SECURITY
ISO
ISO 27001
ISO27001
QA
SECURITY
SECURITY PLAN
SOCS
SYSTEM SECURITY
WRITING EXPERIENCE
AUDITS
DEV OPS
DEVOPS
Minimum Degree Required: Bachelor''s Degree


Client : Intelliswift Inc.

             

Similar Jobs you may be interested in ..