Job Title: IT Security Analyst
Location: Michigan (Hybrid - In-office 2 days per week)
Duration: 1 Year with Possible Extension
Notes:
First Round: Virtual interview via MS Teams.
Second Round: In-person interview at the Dimondale, MI office.
Screenshot photo of candidate required for virtual interviews.
A vendor representative must be present at the beginning of the virtual interview to validate the candidate.
Hybrid: In-office 2 days per week (No remote-only option).
Local and non-local candidates accepted (Non-local candidates must relocate at their own expense with no delays).
Cover Sheet (attached).
Valid Right to Represent with hybrid work schedule acknowledgment confirmed by the candidate.
Candidate's Resume (Full legal first name & last name ONLY).
Job Description:
Assist the Michigan Cyber Security, Risk, and Compliance Division Director with enterprise risk management.
Assess enterprise data security policies, processes, procedures, and controls, recommending improvements where needed.
Conduct risk assessments for specific agencies, identifying gaps in security control environments and compliance requirements.
Perform gap analysis of security requirements in agency applications according to security regulations and policies.
Guide NIST controls and other security statutory and regulatory requirements.
Act as a subject matter expert, leading and mentoring within the Risk and Compliance Division.
Enter and manage information in Keylight to complete the risk assessment process.
Assist with MiSAP Risk Assessments and contribute to the development of a Cyber Security Framework for the State of Michigan.
Work with the MCS Keylight team to improve the MiSAP process.
Perform additional cybersecurity-related tasks as assigned
Skill Years of Experience Total Experience
IT security and audit experience6+ Years
Knowledge of national/international security standards (NIST, PCI, CJIS, CMS, ISO, SOX, HIPAA, HITECH)6+ Years
Security assessments and reviews6+ Years
Enterprise risk management process6+ Years
Data security policies, processes, procedures, and controls6+ Years
Risk assessment and compliance gap analysis6+ Years
Interpretation of NIST controls and regulatory requirements6+ Years
Experience using Keylight for risk assessment processes6+ Years
Experience with MiSAP Risk Assessment6+ Years
Cybersecurity framework implementation6+ Years
Strong communication and collaboration skills6+ Years
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job# Manage, monitor, and maintain Oracle databases across production, development, and testing environments. # Provide L2-level support by resolving incidents, alerts, and service requests within SLAs. # Perform database performance tuning : SQL query optimization...
The PSE Mail Processing Clerk plays a vital role in the efficient processing and distribution of mail within the postal service. The position involves the organization, sorting, and handling of letters and packages to ensure they reach their intended destinations in a timely...
...integrated global real estate platform offering expertise in property management, investment management, development, and construction... ...DESCRIPTION SUMMARY This role applies generally accepted accounting principles (GAAP) to analyze financial information, reconcile...
...of the core technical team building the network infrastructure for satellite to ground... ...Kuiper that would enable you drive the engineering culture of the team. Export Control... ...BASIC QUALIFICATIONS - 3+ years of non-internship professional software development...
...8 AM-5 PMCategory:Information TechnologyDepartment:IT EPICJob Type: Full timeWork Shift: DayHours/Week: 40.00Union... ...access, advance health equity, and drive innovation across the system. The Applications Analyst III maintains and optimizes...