Employer Active
Role: Cloud Security Analyst (MidLevel)
Location: Hybrid DC Metro
Employment Requirements: US Citizen
Role Summary:
This role serves as a handson midlevel security analyst who will be responsible for interfacing with the security engineering operations architecture and build teams assisting with the development and/or maintenance of various System Security Plans (SSP) and associated documentation for multiple environments gathering the security control implementations information for the security controls and documenting their implementation in the SSP as well as updating associated security document.Security Analyst (MidLevel)
This role serves as a handson midlevel security analyst who will be responsible for interfacing with the security engineering operations architecture and build teams assisting with the development and/or maintenance of various System Security Plans (SSP) and associated documentation for multiple environments gathering the security control implementations information for the security controls and documenting their implementation in the SSP as well as updating associated security documentation as needed (i.e. plans procedures processes). Additionally this role will assist with the security assessments (i.e. IRS specific security control implementation etc.) to include supporting collection of evidence.
The Security Analyst will be responsible for maintenance of the security documentation for various environments; but concentrating on the SAP HANA Cloud tenants and IRS customer. This position may include development of the security documentation use of RegScale assisting with the IRS FedRAMP SOC or FISMA authorization/assessment processes to include prep of the operations team and documentation summary and update as required. This role serves as a mid level security analyst who assists with the security documentation and can provide thoughtful recommendations on processes and procedures as well as implementation of security controls. This role must communicate between security architecture engineering development and operations teams as required and be able to interpret and document the results of data gathering. Key deliverables for success will be participation and/or facilitation of assessments development and maintenance of security documentation that is current and useful ensuring processes and procedures are current and up to date and assists with assurance that all appropriate IRS and other framework security controls are successfully implemented and associated security documentation is developed and implemented.
This position will also assist with various assessments as a team member or as a lead. This will include scheduling of the interviews collection of evidence working with third party assessors in tracking evidence update of security documentation in preparation of the assessment and other duties as assigned. Customer interaction is also required with clear and concise oral / written responses.
GENERAL RESPONSIBILITES:
GENERAL QUALIFICATIONS:
SPECIFIC TECHNICAL SKILLS DESIRED:
Full Time