IT Architect QSA ISA AWS Azure IDS/IPS SIEM HIPAA IRS-1075 Tenable Nessus IBM Qradar

Profile

NCDOT-679623

The NCDIT-Transportation Information Security Office requires a senior information security architect specializing in risk assessment and technical consultation, focusing on industry standard security, risk, and compliance, especially PCI-DSS and NIST.

REQUIRED/DESIRED SKILLS

Skills

Required/

Desired

Experience

Current or prior role as a PCI-DSS Qualified Security Assessor (QSA) or PCI-DSS Internal Security Assessor (ISA)

Highly desired

Experience leading or directly supporting PCI-DSS annual assessment for a L1 or L2 merchant, familiarity with PCI-DSS 3.2 or higher.

Required

3 Years

Strong knowledge and experience architecting/designing implementations, configuring, and risk assessing AWS and/or Azure cloud computing environments.

Required

3 Years

Progressive advanced experience as an IT information security professional working within an enterprise environment.

Required

5 Years

Hands-on experience implementing, administrating and operating technologies such as firewalls, IDS/IPS, SIEM, antivirus, network traffic analyzers

Required

5 Years

Detailed technical experience with network security, security protocols, access control, cryptography, application security, and data protection.

Required

5 Years

Extensive experience with data classification, handling, assessment, and enforcement.

Required

5 Years

Experience implementing and supporting systems within enterprise-class data center environments.

Required

5 Years

Advanced knowledge of regulatory compliance including, but not limited to: OWASP, ISO, NIST, FISMA, PCI-DSS, HIPAA and IRS-1075.

Required

5 Years

Experience leading risk assessments using industry standard frameworks such as ISO or NIST for complex IT projects and technologies.

Required

5 Years

Experience developing, leading and executing information security incident response plans.

Required

5 Years

Experience developing and implementing information security policy, standards and procedures.

Required

5 Years

Experience providing research and evidence in support of audits.

Required

3 Years

CISSP information security certification.

Highly desired

Specific experience implementing, administrating, or operating Tenable Nessus.

Highly desired

2 Years

Specific experience implementing, administrating, operating or utilizing IBM Qradar SIEM

Highly desired

2 Years

Experience consulting on information security solutions for a state or federal agency.

Highly desired

2 Years

Experience implementing and operating enterprise class data networking solutions

Highly desired

5 Years

Experience implementing and operating enterprise class server and storage systems

Highly desired

5 Years

Detailed expert knowledge of NIST 800-53, and performing risk assessments utilizing NIST 800-53.

Highly desired

5 Years

Detailed expert knowledge of ISO 27001, and performing risk assessments utilizing ISO 27001

Highly desired

2 Years

Detailed expert knowledge of the NIST Cyber Security Framework (CSF), and performing risk assessments utilizing the NIST CSF.

Highly desired

2 Years

Familiarity and experience with the Department of Homeland Security (Client) Cyber Security Evaluation Tool (CSET).

Highly desired

2 Years

Experience consulting on information security and IT solutions for a state motor vehicles agency or department of transportation.

Highly desired

Experience performing risk assessments, documenting and driving compliance with the North Carolina DIT Statewide Information Security Manual.

Highly desired

Experience completing NC Department of Information Technology Privacy Threshold Analysis (PTA) documentation.

Highly desired

Experience completing NC Department of Information Technology Vendor Readiness Assessment Report (VRAR) documentation.

Highly desired

Trained and experience implementing and operating with ITIL (formerly Information Technology Infrastructure Library) concepts.

Highly desired

ITIL (formerly Information Technology Infrastructure Library) certification.

Nice to have

Familiarity and practical experience with SABSA or TOGAF enterprise architecture frameworks and methodologies.

Highly desired

SABSA or TOGAF certification.

Nice to have

Toll Free:

855-818-5109

Local:

518-218-1700

Map

& visit our office

Corporate - Albany NY

435 New Karner Rd, Ste 202

Albany NY 12205

Chicago

63E Lake Street, Ste 201

Chicago, IL 60601

Florida

17258 SE 121st Ave

Summerfield, FL 34491

© 2018 MVP Consulting Plus. All Rights Reserved.

Company info

Mvp Consulting Plus, Inc.