Security Operations Center (SOC) Analyst

Overview

Remote
Depends on Experience
Contract - W2

Skills

Networking_InfoSec
Networking_Firewall/Security

Job Details

Our government client is looking for an experienced Security Operations Center (SOC) Analyst on a remote 3+ months contract opportunity in Denver, CO.

Position: Security Operations Center (SOC) Analyst

Job Description:
This position is responsible for audits and compliance review in the development, enhancement and maintenance of the Program Eligibility Application Kit (PEAK) and the Colorado Benefits Management System (CBMS), and any additional CBMS subsystems. This includes the following:
Oversees the coordination of annual audits and serves as primary liaison to the audit teams during their review of PEAK, CBMS and its subsystems compliance with documented processes.  Coordinates the collection of audit items/documents.  Coordinates meetings and provides information as needed for audit requests.
Performs Quality Assurance monitoring on documentation and other assigned items.

Duties
1. SOC 1 Type 2 Audit Coordination - 
Brief Duty Description:  

  • Coordinate with the CDHS CBMS SOC audit team and agency staff to provide agency responses to requests from service auditors as necessary.
  • Serves as the primary lead Point of Contact for audits on PEAK, CBMS, OIT and its subsystems. 
  • Serves as lead point of contract for Independent Verification and Validations (IV&V) teams
  • Serves as lead point of contract for State of Colorado System and Organization Controls (SOC) auditors and the Office of State Auditor (OSA)
  • Serves as point of contract for Social Security Administration (SSA) Audits
  • Collaboration with the program area leads vendor representatives, IV&V members, management, and others to provide support to the auditors.
  • Assist with the coordination of the collection and sharing of documentation, and coordinate team members with the audit team.
  • Coordinates all audit findings and responses to ensure items are addressed and resolved.
  • Specific examples of regular, ongoing decisions made by this position related to this duty.
  • MARSe 2 audit - coordinate resolution of controls with agency. This would include determining who on the CBMS team would be assigned the Control. This position would also manage updates and statuses of work being done on each control. 
  • MEET (CMS) - coordinate resolution of controls with agency. This would include reviewing controls and determining who on the CBMS team would be assigned the Control. This position would also manage updates and statuses of work being done on each control. 
  • Annual SOC 2 Type 2 audit - work with SOC auditors when to initiate audit and then coordinate resolution of controls with agency and vendor. 
  • ADA compliance within CBMS, PEAK, mobile apps and subsystems (Atlassian Suite, Google, etc). 
  • In performing this duty, provide examples of typical problems or challenges encountered by this position, and the guidance used to resolve the problem.
  • In the course of coordinating an audit, challenges with collection of support may be encountered.  Following the processes established and escalating to management would be the steps to resolve the problem.
2. Other Duties as Assigned - 
  • Identity & access management - identify user roles, security groups that should exist, active directory cleanup assistance/coordination with appropriate teams 
  • Understanding of PEAK/CBMS security architecture - network, cloud, data, etc. 
  • Risk assessments 
  • Vulnerability management 
  • PEAK/CBMS specific compliance/security policies 
  • Understanding of security configs. 
  • Validation of security testing in CI/CD pipelines for deployments 
  • Coordination with incident management and DR

About Vector:
Vector Consulting, Inc., (Headquartered in Atlanta) is an IT Talent Acquisition Solutions firm committed to delivering results. Since our founding in 1990, we have been partnering with our customers, understanding their business, and developing solutions with a commitment to quality, reliability and value. Our continuing growth has been and continues to be built around successful relationships that are based on our organization's operating philosophy and commitment to ** People, Partnerships, Purpose and Performance - THE VECTOR WAY
www.vectorconsulting.com
“Celebrating 30 years of service.”
#LI-GK1

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.