Network Security Analyst GRC
Share
Job Location:
Austin, TX - USA
Monthly Salary:
Not Disclosed
Posted on:
2 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Title: GRC Network Security Analyst
Exp: Minimum 12 Years
Location :Austin Texas - 5 Days Onsite
Required Certification
CompTIA Security
GIAC GSEC
CAP
CISSP
Job Description:
A network security analyst ensures that information systems and computer networks are secure. This includes protecting the company against hackers and cyber-attacks as well as monitoring network traffic and server logs for activity that seems unusual. Additionally these analysts are responsible for finding vulnerabilities in the computer networks and creating recommendations for how to minimize these vulnerabilities. The network security analyst investigates security breaches develops strategies for any security issues that arise and utilizes the help of firewalls and antivirus software to maintain security. DISCLAIMER: Candidates for this position will be subject to a pre-employment security review to determine employment eligibility.
Project Scope:
HHSC requires an experienced Network Security Analyst II - System Security & Risk Specialist to support enterprise cybersecurity Governance Risk and Compliance (GRC) operations. The contractor will support System Security Plan (SSP) development Security Assessments (SA) and Risk Assessments (RA) across HHSC and DSHS application and infrastructure portfolios. The contractor will work directly with program areas Information Owners (IO) Information Custodians (IC) technical teams and the CISO Office to ensure security documentation assessments and risk records are completed in accordance with NIST SP 800-53 NIST Risk Management Framework (RMF) DIR Security Control Standards and HHSC CISO Office procedures. RSA Archer GRC serves as the system of record for SSPs SAs RAs risks POA&Ms and compliance reporting.
Key Responsibilities:
System Security Planning (SSP)
Develop update and maintain System Security Plans for HHSC applications and systems.
Work with program teams Information Owners and Custodians to gather control implementation evidence.
Ensure System Security Plans align with NIST DIR and HHSC CISO Office standards.
Security Assessments (SA)
Plan and conduct Security Assessments to validate implementation and effectiveness of security controls.
Review technical administrative and operational evidence.
Document assessment results and track remediation activities.
Risk Assessments (RA)
Facilitate Risk Assessment workshops with Information Owners and Custodians.
Identify threats vulnerabilities likelihood and impact.
Document risks mitigation plans and Risk-Based Decisions in RSA Archer.
GRC & Compliance Operations
Maintain security artifacts risks and remediation plans in RSA Archer GRC.
Support system authorization (ATO) activities and continuous monitoring.
Prepare audit and oversight evidence.
Produce leadership reports and security posture metrics.
Stakeholder Engagement
Serve as liaison between program areas technical teams and CISO Office leadership.
Provide guidance and training on System Security Plans Security Assessments and Risk Assessment processes.
Deliverables
Completed and updated System Security Plans (SSPs)
Documented Security Assessment reports and findings
Completed Risk Assessments and Risk-Based Decisions
RSA Archer risk and compliance records
Remediation tracking and status reports
Audit-ready security documentation packages
Required Qualifications
4 years of experience in cybersecurity GRC system security planning or information assurance.
Hands-on experience developing System Security Plans (SSPs) conducting Security Assessments and facilitating Risk Assessments.
Knowledge of NIST SP 800-53 and NIST NIST Risk Management Framework.
Experience using GRC platforms (RSA Archer preferred).
Experience working with Information Owners and Custodians.
Strong technical writing and documentation skills.
Ability to work independently on complex assignments.
Preferred Qualifications
Experience in state or federal government cybersecurity programs.
Familiarity with DIR Security Control Standards.
Experience supporting ATO and continuous monitoring.
CRISC or CISA certification.
Work Requirements
Must pass background check.
Must comply with HHSC confidentiality and security requirements.
Occasional after-hours support during audits or major assessments.
Vishal (Victor) Verma Assistant Manager
NS IT Solutions
Exp: Minimum 12 Years
Location :Austin Texas - 5 Days Onsite
Required Certification
CompTIA Security
GIAC GSEC
CAP
CISSP
Job Description:
A network security analyst ensures that information systems and computer networks are secure. This includes protecting the company against hackers and cyber-attacks as well as monitoring network traffic and server logs for activity that seems unusual. Additionally these analysts are responsible for finding vulnerabilities in the computer networks and creating recommendations for how to minimize these vulnerabilities. The network security analyst investigates security breaches develops strategies for any security issues that arise and utilizes the help of firewalls and antivirus software to maintain security. DISCLAIMER: Candidates for this position will be subject to a pre-employment security review to determine employment eligibility.
Project Scope:
HHSC requires an experienced Network Security Analyst II - System Security & Risk Specialist to support enterprise cybersecurity Governance Risk and Compliance (GRC) operations. The contractor will support System Security Plan (SSP) development Security Assessments (SA) and Risk Assessments (RA) across HHSC and DSHS application and infrastructure portfolios. The contractor will work directly with program areas Information Owners (IO) Information Custodians (IC) technical teams and the CISO Office to ensure security documentation assessments and risk records are completed in accordance with NIST SP 800-53 NIST Risk Management Framework (RMF) DIR Security Control Standards and HHSC CISO Office procedures. RSA Archer GRC serves as the system of record for SSPs SAs RAs risks POA&Ms and compliance reporting.
Key Responsibilities:
System Security Planning (SSP)
Develop update and maintain System Security Plans for HHSC applications and systems.
Work with program teams Information Owners and Custodians to gather control implementation evidence.
Ensure System Security Plans align with NIST DIR and HHSC CISO Office standards.
Security Assessments (SA)
Plan and conduct Security Assessments to validate implementation and effectiveness of security controls.
Review technical administrative and operational evidence.
Document assessment results and track remediation activities.
Risk Assessments (RA)
Facilitate Risk Assessment workshops with Information Owners and Custodians.
Identify threats vulnerabilities likelihood and impact.
Document risks mitigation plans and Risk-Based Decisions in RSA Archer.
GRC & Compliance Operations
Maintain security artifacts risks and remediation plans in RSA Archer GRC.
Support system authorization (ATO) activities and continuous monitoring.
Prepare audit and oversight evidence.
Produce leadership reports and security posture metrics.
Stakeholder Engagement
Serve as liaison between program areas technical teams and CISO Office leadership.
Provide guidance and training on System Security Plans Security Assessments and Risk Assessment processes.
Deliverables
Completed and updated System Security Plans (SSPs)
Documented Security Assessment reports and findings
Completed Risk Assessments and Risk-Based Decisions
RSA Archer risk and compliance records
Remediation tracking and status reports
Audit-ready security documentation packages
Required Qualifications
4 years of experience in cybersecurity GRC system security planning or information assurance.
Hands-on experience developing System Security Plans (SSPs) conducting Security Assessments and facilitating Risk Assessments.
Knowledge of NIST SP 800-53 and NIST NIST Risk Management Framework.
Experience using GRC platforms (RSA Archer preferred).
Experience working with Information Owners and Custodians.
Strong technical writing and documentation skills.
Ability to work independently on complex assignments.
Preferred Qualifications
Experience in state or federal government cybersecurity programs.
Familiarity with DIR Security Control Standards.
Experience supporting ATO and continuous monitoring.
CRISC or CISA certification.
Work Requirements
Must pass background check.
Must comply with HHSC confidentiality and security requirements.
Occasional after-hours support during audits or major assessments.
Vishal (Victor) Verma Assistant Manager
NS IT Solutions
Required Skills:
CISANETWORK SECURITY
Key Skills
- IDS
- Network Support
- Tcp/IP
- LAN
- Computer Networking
- Windows
- TCP
- Perl
- Telecommunication
- Operating Systems
- Juniper
- Dns
