Job Listing Information
- 19-Jul-2021 to 02-Aug-2021 (UTC)
- Norfolk, VA, 23504, USA
- Full Time
- Long Term Contract Length
- 40 Weekly Hours
Remote with some ON SITE as requested
Evaluate current security architecture compared to current Commonwealth standards and industry best practices. Develop plans to and implement needed controls gaps.
· Establish the target security/infrastructure architecture. Author corresponding requirements, including definition of dependencies on infrastructure consolidation efforts.
· Define Security/Information Assurance requirements (and dependencies). Specify key architectural aspects of the architecture view, and identify other aspects that need definition.
· Other duties include researching best practices for reuse, applying Commonwealth IT Security and industry standards, and defining the transformation approach that transitions the current architecture to the target architecture.
· Experience working with current and emerging information security technologies and development methodologies.
· Bachelor’s degree in computer science, management information systems, or related field preferred. Good analytical and creative problem solving skills.
· Relies on experience and judgment to plan and accomplish goals, independently performs a variety of complicated tasks, a wide degree of creativity and latitude is expected.
· Security+ or other Security related certification
· Considerable knowledge of current security frameworks, standards, and practices in a computing environment.
Considerable knowledge and proficiency in several of the following:
· Security Operations Center (SOC) development and vulnerability management practices.
· Access and authentication controls, identity-enabled features of IT Security tools, and directories such as LDAP or Active Directory, MFA
· Network design, firewalls, VPN, routers, and related network devices
· Monitoring, analysis, alert and reporting tools and design
· Public key infrastructure, digital signatures, certificate authorities
· Vulnerability management tools and procedures
· Intrusion prevention systems, logging, monitoring SOAR/SIEM
· Securing public and private cloud and virtual environments.
Very strong interpersonal and communication skills (oral and written).
CASP or CISSP preferred
Required / Desired Skills
Exp w/Security Operations Center (SOC) development and vulnerability management practices - Required 5 Years
Access and authentication controls, identity-enabled features of IT Security tools, and directories such as LDAP or Active Directory, MFA - Required 5 Years
Network design, firewalls, VPN, routers, and related network devices - Required 5 Years
Monitoring, analysis, alert and reporting tools and design - Required 5 Years
Public key infrastructure, digital signatures, certificate authorities - Required 5 Years
Vulnerability management tools and procedures - Required 5 Years
Intrusion prevention systems, logging, monitoring SOAR/SIEM - Required 5 Years
Securing public and private cloud and virtual environments. - Required 5 Years
CASP or CISSP certs preferred - Highly desired