Senior IT Security Analyst

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - 6 Month(s)

Skills

Active Directory
Analytical Skill
Back Office
CISSP
Collaboration
Communication
Computer Networking

Job Details

We are looking for Senior IT Security Analyst for our client in Richmond, VA
Job Title: Senior IT Security Analyst
Job Location: Richmond, VA
Job Type: Contract
Job Description:
  • The Tolling Cybersecurity Analyst is responsible for monitoring, analyzing, and responding to cybersecurity events affecting tolling back office systems and devices.
  • The role involves incident triage, vulnerability assessment, onboarding new systems into monitoring processes, and collaborating with internal and external stakeholders to strengthen the security posture of tolling infrastructure.
Responsibilities:
  • Monitor security alerts and logs for tolling-related infrastructure using SIEM and other monitoring tools.
  • Analyze, investigate, and triage security events and potential incidents involving tolling back office systems and devices.
  • Coordinate with Tolling Division personnel, vendors, and OT operations teams to facilitate incident response, forensics, and remediation activities.
  • Assist in onboarding tolling systems into the OT cybersecurity monitoring process, including asset inventory, log ingestion, and configuration baselines.
  • Perform security assessments and reviews of tolling systems for vulnerabilities, misconfigurations, and compliance gaps with standards such as NIST 800-53, NIST 800-82, PCI DSS, and agency-specific policies.
  • Develop and maintain incident response procedures and playbooks specific to tolling infrastructure.
  • Contribute to regular security reporting, dashboards, and metrics for tolling systems.
  • Collaborate with internal and external stakeholders to enhance the overall security posture of tolling environments.
Required Qualifications:
  • Bachelor s degree in Cybersecurity, Information Technology, Engineering, or a related field; OR equivalent experience.
  • 3+ years of cybersecurity experience, including at least 1 year supporting Azure, IIS, Active Directory, SQL databases, and critical infrastructure environments.
  • Familiarity with SIEM tools, log analysis, and incident response workflows.
  • Knowledge of PCI DSS 4.0+ security requirements.
  • Working knowledge of networking protocols, system hardening, and asset inventory practices.
  • Strong analytical, communication, and collaboration skills.
Preferred Qualifications:
  • Experience supporting or securing tolling systems, traffic management infrastructure, or roadside equipment (highly desired: 5 years).
  • Knowledge of security frameworks such as PCI DSS, SEC 530, NIST 800-53, NIST 800-82, or CIS Controls (highly desired: 5 years).
  • Experience working with third-party vendors in both state-managed and vendor-managed environments (highly desired: 5 years).
  • Certifications such as GICSP, GCIA, CompTIA Security+, or CISSP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.