Security Analyst

Location & Work Arrangement

• Location: Richmond, Virginia
• Work Arrangement: Hybrid
• Contract: This is a Contract position.
• Mode of Interview: In Person Only is required.
• Note: The candidate must physically reside within the US for the duration of the assignment, adhering to Commonwealth of Virginia security policies.

Key Responsibilities

• Security Controls & Monitoring: Monitor and advise on information security issues related to agency systems and workflow. Ensure internal IT security controls are appropriate and operating effectively.
• Policy & Compliance: Develop and publish Information Security policies, procedures, standards, and guidelines based on industry best practices and compliance with Commonwealth IT Security requirements.
• Risk Management: Conduct campus-wide data classification assessment and security audits. Manage and drive the execution of resulting remediation plans.
• Project & Incident Management: Coordinate and execute IT security-related projects for the agency. Coordinate the agency's response to information security incidents.
• Stakeholder Collaboration: Collaborate with IT management, Internal Audit, and VITA to proactively manage security vulnerabilities.
• Security Awareness: Create, manage, and maintain user security awareness programs across the agency.
• Research & Documentation: Conduct security research to stay abreast of the latest security issues. Prepare comprehensive IT security documentation, including web content, alerts, and department policies.

Required Qualifications

• Leadership & Complexity: Proven experience working without assistance, providing leadership for others, and managing highly complex work efforts (12+ Years Experience).
• Domain Expertise: Extensive experience in the IT Security or related field (7+ Years Experience).
• Regulatory Knowledge: Deep knowledge of Commonwealth IT Security policies, standards, and guidelines.
• Technical Depth: Ability to conduct technical security audits and manage large-scale remediation projects.