Information Security Specialist
Location: McLean, VA
•At least 7 years experience in IS and related programs including, but not limited to IS risk management, awareness & training, identity and access management, information protection, incident management, vulnerability assessment.
•Knowledge of IS related regulations and laws
•Strong understanding of application vulnerability management, including development lifecycle integration,
•Strong communication skills
•Adept at summarizing and conveying complex technical matters
•Strong organization and reporting
•Prior experience with a Security Champion program a plus
•Experienced in Powerpoint
•Excellent written and oral communication"
Seeking skilled Information Security to support our Business Information Security Leader (BISL) team. BISL primary services include:
•Risk advisory – Advise the business on security risks
•Communications – two way communications between the business/IT and IS. BISLs stay abreast of business and IT activities to identify risks and opportunities for IS partnership. BISLs are engaged by IS leadership to solicit action in response to incidents, operational activities, and initiatives.
•Developing templates for consistent reporting
•Reporting (such as newsletter) describing business activities to our internal IS staff: This will improve departmental awareness of line of business needs and improve our ability to adjust services and solutions accordingly
•Dashboards for the business and IT that summarize key IS activities and support needs
•Analysis (leveraging portfolio knowledge) and tracking of business outstanding actions for IS initiatives and remediation activities, security findings, and overall health.
•Development of standard business communications for active IS requests
•Identifying additional opportunities for standardization and improvements
•Processing intake requests
•Shadow BISLs to learn BISL role and execute support of lower risk support requests.
•Support major business programs by monitoring program execution, coordinating team involvement, and preparing progress updates back to IS leadership
•Work with BISLs and other IS teams to engage and help develop approach to modern delivery initiatives, engaging on Minimum Viable Product (MVP) work.
•Assist with the development and rollout of a Security Champions program
7 - 10 Years