Information Security Risk & Compliance Specialist

Overview

On Site
$$60-$65 per/hour
Contract - W2
Contract - 12 month(s)

Skills

Attention To Detail
Collaboration
Risk Management
Risk Assessment
Auditing
Documentation
Security Awareness
Training
Leadership
Policies and Procedures
Information Technology
Computer Science
Information Security
Regulatory Compliance
Writing
Communication
CISSP
CISM
ISO/IEC 27001:2005

Job Details

Overview

We're seeking a proactive and detail-oriented Information Security Officer to lead the implementation of security policies and procedures across our organization. This role is critical in shaping our security posture, ensuring compliance with industry standards, and fostering a culture of security awareness.

Key Responsibilities

  • Review and implement new information security policies that have been developed for South Carolina State Agencies.
  • Collaborate with stakeholders to ensure policies are practical, enforceable, and tailored to organizational needs.
  • Maintain a comprehensive policy repository and ensure timely updates.
  • Translate high-level policies into actionable procedures and guidelines for technical and non-technical teams.
  • Develop clear, concise documentation that supports training, audits, and operational consistency.
  • Ensure procedures are accessible and understandable across departments.
  • Compliance & Risk Management
  • Monitor compliance with internal policies and external regulations
  • Conduct risk assessments and recommend mitigation strategies.
  • Support internal and external audits by providing documentation and evidence of compliance.
  • Assist in developing security awareness programs and training materials.
  • Provide guidance and support to teams on policy interpretation and implementation.
  • Stay current with emerging threats, technologies, and best practices.
  • Recommend enhancements to existing policies and procedures based on evolving risks and feedback.

Qualifications

  • A Bachelor's Degree in information technology, computer science, related technical field, or an Associate's Degree in information technology, computer science or related field and two years of relevant work experience, or a High School Diploma with five years of relevant work experience.
  • 3+ years of experience in information security, policy development, or compliance.
  • 3+ years of experience with security frameworks (e.g., NIST, ISO 27001, CIS Controls).
  • Excellent writing and communication skills.
  • Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer are a plus.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.