Security Business Analyst
Location
Massachusetts | United States
Job description
Hi!
I have a new role that I could use some help with, it's for a long term contract Security Business Analyst for the Commonwealth of MA . This role is hybrid onsite in Quincy, MA. No relocation candidates allowed, Local candidates only . The max c2c rate is $60 an hour. No visa restrictions. All candidates must be sent with a driver's license. Please let me know if you have any questions!
Job Description:
The Security Business Analyst will work collaboratively with the CISO, and department heads within the Security Office to identify, analyze and document operational processes, procedures and workflows.
In addition, the Security Business Analyst will be responsible for determining operational objectives by studying Security Office functions, gathering information; evaluating output requirements and formats.
The incumbent must be able to identify emerging information security threats, potential audit findings and potential incidents, and to work in conjunction with internal and external stakeholders on solutions and risk mitigation strategies. The individual will produce detailed documentation, including procedures, processes, and data flows to improve the security posture of the organization and will provide recommendations for security enhancements to existing operational processes and procedures.
Responsibilities:
- Research data management best practices, including in the areas of governance, storage, privacy, and reporting.
- Review current policies and procedures and make recommendations for policy and process changes to address gaps and risks associated with current IT Security operations.
- Work with stakeholders, vendors, contractors and applicable third parties to ensure existing EOHHS Policy and Standards are up to date.
- Create knowledge resources and materials related to EOHHS IT Security.
- Develop documentation, such as, workflows, guidelines, processes, and procedures, regarding Incident Response Plan, Vulnerability Management Program and other security initiatives.
- Develop a process for tracking open security-related problem reports and fixes.
- Help institute clear operational protocols and advise on the deployment and/or acquisition of EOHHS IT assets, ensuring that EOHHS IT Security is well-supported with the tools and information needed to effectively implement Security functions.
- Prepare, manage, and communicate project plans. Coordinate project activities with team participants as required.
- Ensure project documentation, plans and scheduling are in compliance with agency initiatives and priorities.
- Identify risks, potential scope creeps & escalating issues to Security Office management.
- Maintain a comprehensive understanding of the evolving threats to networks, applications and cloud infrastructure.
- Adjust to changing situations to meet emergencies or security incident resolution.
- Prepare program documentation: flow charts, file layouts, input/output documentation and program narratives.
Job tags
Salary
