Spectraforce Technologies
Job Title: Analyst, IS Security
Location:
Columbia, SC (I-20 @ Alpine Road) Work Model:
Hybrid - Onsite Tuesday, Wednesday, and Thursday Schedule:
Standard hours 8:30 AM - 5:00 PM | 40 hours per week Duration:
12 months with possible extension Description Job Category:
Information Systems Duties
Researches, analyzes, and troubleshoots information systems compliance and security issues. Identifies, validates, and reports on security incidents and events based on enterprise policies and procedures. Performs forensic information security investigations involving enterprise computers, servers, and/or networking infrastructure. Assists in providing security infrastructure and support for enterprise systems. Responsibilities Breakdown
20%
- Analyze compliance and technical control validation data to determine and report baseline variance for all applicable technology environments. 20%
- Interface with internal and external audit staff to ensure appropriate and accurate responses to audit queries are satisfied in a timely fashion. 20%
- Assist in researching and evaluating systems and procedures for the prevention, detection, containment, and correction of information security breaches. Advise management and users regarding security procedures and compliance policies. 15%
- Utilize technologically advanced software to perform system monitoring evaluations and audits to ensure compliance with corporate security policies and standards. 15%
- Prepare and analyze compliance information to develop mitigation priorities, milestones, and audit responses. 5%
- Participate in the evaluation of products and/or procedures to enhance productivity and effectiveness of information security across the organization. 5%
- Assist architects and security specialists to ensure adequate security solutions are in place throughout IT systems and platforms to mitigate identified risks and meet business objectives and regulatory requirements. Skills and Experience
Required Skills and Abilities
Strong data analysis and correlation abilities. Strong organizational, interpersonal, and communication skills. Strong knowledge of administrative, procedural, and technical controls used to reduce security risks. Ability to effectively prioritize and execute tasks in a high-pressure environment. Strong knowledge of enterprise data architecture, systems engineering, and data communications as applied to the automated storage and retrieval of information, using multiple platforms and protocols with the inherent security risks of each. Strong understanding of the organization's goals and objectives. Strong familiarity with threat analysis, risk management, configuration management, business continuity, and contingency planning as it applies to IT. Ability to troubleshoot multi-vendor security issues. Able to work in a team-oriented, collaborative environment. Excellent attention to detail. Required Software and Tools
Strong proficiency with applicable IT Security tools (software and hardware). Microsoft Office. Work Environment
Fast-paced, multi-platform environment that may require 24x7 action and response to support the technical business needs of the customer. Education
Required Education
Bachelor's degree in Computer Science, Information Technology, or other job-related degree OR 4 years of job-related work experience OR 2 years of job-related experience plus an Associate's degree in Computer Science, Information Technology, or other job-related degree Experience Requirements
Required Experience:
4 years of job-related technical experience. Preferred Work Experience
Experience in network security (Cisco ASA, IPS, VPN, RSA SecurID, PKI, cryptography). Experience with security controls for LAN/WANs, client-server, web-based systems, and databases. Experience configuring security devices such as firewalls, intrusion prevention systems, patch deployment, and risk assessment/vulnerability scanners. Preferred Licenses and Certifications
CISA, NSA, CISM, CISSP Additional Details
Team Name:
Compliance & Audit Services Team Overview:
This 5-person team supports I/S in understanding what and how I/S processes need to flow in order to achieve compliance. The team participates in projects to support remediation of audit gaps, introduction of new tools with compliance requirements, and serves as knowledge experts on compliance needs. Role Focus
6 years of Audit and Compliance experience (not necessarily in an auditor role). Experience supporting IT organizations during audits and facilitating the audit process. Minimum 2 years of root cause analysis experience within IT organizations to resolve audit gaps. Nice to Have
ARS Control Knowledge (Medicare Compliance Requirements). Audit background (note: this role supports I/S through the audit process but does
not
perform as an auditor). Soft Skills
Demonstrated negotiation skills. Collaborative team player. Active listener. Secondary Responsibilities
Serve as backup lead (Audit Advisor) for audits within the I/S organization. Work directly with external auditors, facilitate all auditor meetings/interviews, and guide I/S team members on audit communication and evidence presentation.
#J-18808-Ljbffr
Location:
Columbia, SC (I-20 @ Alpine Road) Work Model:
Hybrid - Onsite Tuesday, Wednesday, and Thursday Schedule:
Standard hours 8:30 AM - 5:00 PM | 40 hours per week Duration:
12 months with possible extension Description Job Category:
Information Systems Duties
Researches, analyzes, and troubleshoots information systems compliance and security issues. Identifies, validates, and reports on security incidents and events based on enterprise policies and procedures. Performs forensic information security investigations involving enterprise computers, servers, and/or networking infrastructure. Assists in providing security infrastructure and support for enterprise systems. Responsibilities Breakdown
20%
- Analyze compliance and technical control validation data to determine and report baseline variance for all applicable technology environments. 20%
- Interface with internal and external audit staff to ensure appropriate and accurate responses to audit queries are satisfied in a timely fashion. 20%
- Assist in researching and evaluating systems and procedures for the prevention, detection, containment, and correction of information security breaches. Advise management and users regarding security procedures and compliance policies. 15%
- Utilize technologically advanced software to perform system monitoring evaluations and audits to ensure compliance with corporate security policies and standards. 15%
- Prepare and analyze compliance information to develop mitigation priorities, milestones, and audit responses. 5%
- Participate in the evaluation of products and/or procedures to enhance productivity and effectiveness of information security across the organization. 5%
- Assist architects and security specialists to ensure adequate security solutions are in place throughout IT systems and platforms to mitigate identified risks and meet business objectives and regulatory requirements. Skills and Experience
Required Skills and Abilities
Strong data analysis and correlation abilities. Strong organizational, interpersonal, and communication skills. Strong knowledge of administrative, procedural, and technical controls used to reduce security risks. Ability to effectively prioritize and execute tasks in a high-pressure environment. Strong knowledge of enterprise data architecture, systems engineering, and data communications as applied to the automated storage and retrieval of information, using multiple platforms and protocols with the inherent security risks of each. Strong understanding of the organization's goals and objectives. Strong familiarity with threat analysis, risk management, configuration management, business continuity, and contingency planning as it applies to IT. Ability to troubleshoot multi-vendor security issues. Able to work in a team-oriented, collaborative environment. Excellent attention to detail. Required Software and Tools
Strong proficiency with applicable IT Security tools (software and hardware). Microsoft Office. Work Environment
Fast-paced, multi-platform environment that may require 24x7 action and response to support the technical business needs of the customer. Education
Required Education
Bachelor's degree in Computer Science, Information Technology, or other job-related degree OR 4 years of job-related work experience OR 2 years of job-related experience plus an Associate's degree in Computer Science, Information Technology, or other job-related degree Experience Requirements
Required Experience:
4 years of job-related technical experience. Preferred Work Experience
Experience in network security (Cisco ASA, IPS, VPN, RSA SecurID, PKI, cryptography). Experience with security controls for LAN/WANs, client-server, web-based systems, and databases. Experience configuring security devices such as firewalls, intrusion prevention systems, patch deployment, and risk assessment/vulnerability scanners. Preferred Licenses and Certifications
CISA, NSA, CISM, CISSP Additional Details
Team Name:
Compliance & Audit Services Team Overview:
This 5-person team supports I/S in understanding what and how I/S processes need to flow in order to achieve compliance. The team participates in projects to support remediation of audit gaps, introduction of new tools with compliance requirements, and serves as knowledge experts on compliance needs. Role Focus
6 years of Audit and Compliance experience (not necessarily in an auditor role). Experience supporting IT organizations during audits and facilitating the audit process. Minimum 2 years of root cause analysis experience within IT organizations to resolve audit gaps. Nice to Have
ARS Control Knowledge (Medicare Compliance Requirements). Audit background (note: this role supports I/S through the audit process but does
not
perform as an auditor). Soft Skills
Demonstrated negotiation skills. Collaborative team player. Active listener. Secondary Responsibilities
Serve as backup lead (Audit Advisor) for audits within the I/S organization. Work directly with external auditors, facilitate all auditor meetings/interviews, and guide I/S team members on audit communication and evidence presentation.
#J-18808-Ljbffr