Role: Information System Security Officer
Duration: 12 months
Location: Onsite 4-5 days/week. Candidates must be within 50 miles of Austin, TX. Relocation will not be considered.
Responsibilities include:
Implement and manage security controls within the client Secure SDLC using NIST RMF and Texas state standards.
Conduct risk assessments and develop strategies for disaster recovery, business continuity, and breach prevention.
Advise agency stakeholders on security procedures, access controls, and incident handling.
Minimum Candidate Characteristics:
4 7 years' experience with NIST RMF, NIST CSF, and Texas Information Security Standards.
Experience conducting and documenting risk assessments and supporting documentation.
Experience in an Information System Security Officer (ISSO) or equivalent role with a Security+ or comparable certification.
Exceptional Candidate Characteristics:
Experience with a public transportation/infrastructure agency
Experience with one or more Texas State Agencies
Responsibilities:
Work involves planning, implementing, and monitoring security measures using the NIST Risk Management Framework and Texas security frameworks for information systems and infrastructures. Works under limited supervision, with latitude for the use of initiative and independent judgment.
DUTIES - The essential duties for this contract include:
Assist with implementation and management the client Secure System Development Lifecycle (SDLC) processes
Coordinates the implementation of system security plans with agency personnel and outside vendors.
Confers with users to discuss issues such as account permission and data access needs, security violations, and programming changes.
Advises management and users regarding security configurations and procedures.
Develops and recommends plans to safeguard information systems from accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
Participates in the development of information technology disaster recovery and business continuity planning.
Performs and reviews technical risk assessments and reviews of new and existing applications and systems, including data center physical security and environment.
Researches, evaluates, and recommends systems and procedures for the prevention, detection, containment, and correction of data security breaches.
Performs related work as assigned.
Minimum (Required):
4-7 years of Knowledge of common information security management frameworks such as the NIST Risk Management Framework, NIST Cybersecurity Framework, and Texas Information Security Standards
4-7 years of Experience conducting and documenting risk assessments and associated reports and supporting documentation
4-7 years of Working in security as an Information System Security Officer or equivalent
4-7 years of Must have a minimum of a Security + or equivalent certifications
Preferred (Optional):
5 years of Experience working with critical timelines
3 years of Experience bridging the technology gap for owners and custodians
3 years of Excellent written and verbal communication. Fluent in the English language.
Never miss an opportunity! Create an alert based on the job you applied for.
