W2 -2 - Security Analyst III NIST standards System Security Plans Assessments Remote within WI

Description:

The client is looking for two (2) Security Analyst III contractors

Top Required Skills & Years of Experience:

Deep understanding of NIST standards (810 years)
Developing comprehensive System Security Plans (SSPs) in accordance with NIST Special Publication 80053 (8 years)
Conducting security assessments to evaluate the effectiveness of implemented security controls (8 years)

Technical Writing
Understanding of IRS 1075 SSA security or other regulatory requirements
Experience with creating maintaining IT policy and procedures
CISA (Certified Information Systems Auditor) or CISSP (Certified Information Systems Security Professional) preferred
Previous experience providing this service for government a plus and experience with DWDs environments will be especially valuable.

Interview Process: Teams with camera on. PLEASE NOTE: Realtime screenshot photo of candidate MUST be uploaded to candidates bid upon confirming the interview.

Duration of the Contract: 06/30/2024 with potential for 1year extensions

Onsite or Remote Candidate MUST be a WI resident or willing to relocate to WI at their own expense prior to starting the role. This position can work 100% remote (within the state of WI).

Additional details:

All service providers submitted with inconsistencies or falsifications in their credentials will be disqualified and DOA Purchasing will be notified. An inperson or live video interview will be required as part of our review process.
The contractor will be required to be available online be present to meet all workload requirements and must be available to attend all scheduled meetings during DWD standard working hours of 7:45am 4:30pm Central Time.

The service being provided through this RFS will be responsible for developing and maintaining system
security plans ensuring compliance with DWD policy standards and regulatory requirements and
conducting thorough security assessments to safeguard our organizations information assets. Services
will collaborate with crossfunctional teams to gather necessary information for the creation and
maintenance of SSPs and ensure that security controls are properly documented and implemented to
mitigate identified risks. Services will conduct security assessments to evaluate the effectiveness of
implemented security controls. Services will also be involved with updating IT security policies &
procedures participating in the audits assisting team with compliance security & risk assessment and
working with team to remediate findings.

The successful candidate will be highly technically competent a keen eye for details strong analytical
skills a good communicator and a deep understanding of NIST guidelines. All candidates submitted with
inconsistencies or falsifications in their credentials will be disqualified.

1. Knowledge and understanding of NIST IT Security standards and control 8 years
2. Experience developing comprehensive System Security Plans (SSPs) in accordance with NIST Special Publication 80053 8 years
3. Collaborating with crossfunctional teams to gather necessary information for the creation and maintenance of SSPs 8 years
4. Experience conducting security assessments to evaluate the effectiveness of implemented security controls 8 years
5. Developing and maintaining IT Security policies and procedures. 8 years
6. Knowledge and understanding of Internal Revenue Service (IRS) Publication 1075 Social Security Administration Technical security 5 years