| Position Details |
Job order - J0717-1544 - Permanent Full Time
|
| Title |
Security Analyst / IT Compliance Analyst |
| Category |
Cyber Security |
| City |
Huntsville, Alabama, United States |
|
| Job Description |
Security Analyst / IT Compliance Analyst
Position Description
Security Analyst / IT Compliance Analyst
CGI Federal is seeking qualified applicants for a Security Analyst position that will serve as an IS Compliance & Reporting Analyst supporting the Security Operations Center (SOC) in Huntsville, AL. Qualified applicants will manage compliance and reporting requirements assigned to the SOC to ensure all business requirements are met.
Your future duties and responsibilities
The responsibilities of the Security Analyst / Compliance Analyst include, but are not limited to:
• Monitor and analyze network traffic and escalate potential violations and deficiencies
• Collaborate with internal departments to identify and remediate escalated items.
• Follow-up with internal departments and document remediation actions.
• Assist in developing unified guidelines and procedures for conducting certifications and/or system-level evaluations of information systems and networks.
• Review current operational Policies and Procedures to meet various compliance requirements of the SOC.
• Conduct regular audits to ensure authorized systems are being operated securely and computer security policies and procedures are implemented as defined in system security plans. Conduct investigations in anomalies found during analysis.
• Perform frequent gap analysis, create SOC internal remediation plans and align/modify procedures to new and changing requirements.
• Assesses IT Compliance controls and develop processes to improve monitoring and remediation efforts.
• Ensures the effectiveness of internal controls in compliance with corporate objectives and government standards.
• Develop, prepare, implement, and maintain Information System Security Plans, Protection Profiles, etc., working closely with SOC Analysts to achieve system accreditation and maintain compliance.
• Proficiency conducting and evaluating/analyzing results from the following set of tools, to include but not limited to: NESSUS and ISS.
• Maintain and update documentation of IT Compliance controls, process flows, test scripts, narratives, and policies and procedures.
• Remain current with changes in regulations to ensure timely compliance with SOX 404 to include internal control updates/changes as needed/required.
• Assist with special projects as needed
Required qualifications to be successful in this role
• Bachelor’s Degree (Risk Management, Finance, Accounting or Business) or 4+ years of equivalent work experience required.
Required:
4+ Years of experience
• Experience and extensive knowledge of a SIEM and event analysis and information gathering
• Experience with Sarbanes-Oxley regulations
• Familiarity with PCI DSS
• Experience creating detailed IT Compliance reports for management
• Experience with IS Profiles and SSP submission
• Experience creating clear and concise technical documentation specifically focused on IT Compliance
• Ability to apply sound judgement, escalate issues as necessary and meet suspense dates
• Organizational skills and the ability to work autonomously or in a team environment
• Excellent written and communication skills
Desired:
• Certified Public Accountant (CPA), Certified Internal Auditor (CIA) or Certified Information System Auditor (CISA).
• Scripting skills (e.g., PERL, Python, shell scripting).
Due to the nature of the government contract, US citizenship is required.
Build your career with us.
It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this change—supporting our clients’ digital journeys and offering our professionals exciting career opportunities.
At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership. All of our professionals benefit from the value we collectively create.
Be part of building one of the largest independent technology and business services firms in the world.
Learn more about CGI at www.cgi.com.
No unsolicited agency referrals please.
CGI is an equal opportunity employer.
Qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, gender Identity, sexual orientation, national origin, age, disability, veteran status, pregnancy, or other status protected by law. CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI’s legal duty to furnish information.
|
|
| Skills |
|
|
| Reference |
561363 |
|
|
Click here to apply
|
|
|
|