Onsite, at the client office in Raleigh, NC, Initial Remote
06+ month
phone and skype
7 years' experience with Splunk, SIEM, RMF
Description:
Client is seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk Management Framework (RMF) compliance
Client requiring services of an IT Security Specialist to aid county offices in the identification of gaps through risk management, and assist in the development of mitigation strategies, and to establish the target security/infrastructure architecture.
Mandatory Required Skills, 7 years of experience:
- Risk Management - must be able to Identify gaps through risk management and assist in the development of mitigation strategies.
- Experience updating privacy and security policies based on gaps found through an assessment process.
- Discover, evaluate, assess, systems, networks, and components through the use of vulnerability scanning and risk assessment method.
- Required
- Experience documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate personnel
- Must be able to review & assess projects and systems throughout all phases of their life cycle in an effort to identify Privacy org needs
- Must be able to serve as a knowledge base for organizations as it relates to compliance requirements and mitigation strategies.
- Experience Performing risk assessments based on NIST 800-53 Rev 4. ISO-27001, HIPAA, and IRS Pub 1075.
- Experience with network mapping and vulnerability scanning tools such as NESSUS and NMAP.