Job summary:


Title:
Information Security Analyst - Hybrid

Location:
Raleigh, NC, United States

Length and terms:
Long term - W2 or C2C


Position created on 03/20/2025 02:56 pm

Job description:


*** Very long term project initial PO for 1 year, expect to go for 4+ years *** ***Hybrid***

Privacy and Security Office (PSO) requiring services of an IT Security Specialist to perform & support privacy, security, and continuity of operations goals, policies and practices, Contract reviews, Risk assessments based on NIST 800-53 rev 5

Duties include, are not limited to:

  • Perform Business Impact Analysys
  • Create Business Continuity Planing (BCP), Disaster Recovery Testing (DR), Continuity of Operations (COOP) for the division
  • Conduct Access Control Reviews
  • Moniter Employee HIPAA and Security Training
  • Perform NIST and HIPAA based risk assessments NIST 800-53 rev 5 and remediate identified gaps
  • Review CAPS POAMS and vulerabiltiy scanner findings and assist with remediation
  • Respond to privacy and security incidents
  • review and approve contracts based on Federal, State and DHHS Privacy and Security requirements
  • Review security exception requests and Privacy Threshhold Analasys

Participate in system reviews audits while administering security policies, activities, and standards in accordance with Federal, State and Departmental (DHHS) regulations and policies affecting DHHS applications.

The ideal candidate will have experience working with current and emerging information security technologies and development methodologies. Bachelors degree in computer science, management information systems, or related field preferred. Good analytical and creative problem solving skills, and relies on experience and judgment to plan and accomplish goals, independently performs a variety of complicated tasks, with a wide degree of creativity and latitude is expected.

Required Skills

  • Risk Management - Must be able to Identify gaps through risk management and assist in the development of mitigation strategies.    5   years
  • Must be able to assist in reviewing projects and systems throughout all phases of their life cycle in an effort to identify Privacy and sec org needs   5   years
  • Must be able to serve as a knowledge base for organizations as it relates to compliance requirements and mitigation strategies.   5    years
  • HIPAA Experience  6   years
  • Risk Assessments based on NIST 800-53   5    years
  • Good Management and presentaion skills   5    years
  • Must be able to develop BCP, COOP, DR and BIA   5  years

Contact the recruiter working on this position:



The recruiter working on this position is Mahesh Kodur(Raghu team)
His/her contact number is
His/her contact email is kmahesh@msysinc.com

Our recruiters will be more than happy to help you to get this contract.