It Security Analyst - Lansing, United States - Kesta IT

    Kesta IT
    Kesta IT Lansing, United States

    2 weeks ago

    Default job background
    Description
    Come build, innovate, disrupt, and thrive

    K?STA I.T is actively seeking an IT Security Analyst foran immediate contract engagement with our government client.

    Work Location: This position is hybrid.

    Job Description:

    As an IT Security Analyst, you will play a crucial role in ensuring the security integrity of systems supporting the client. Your primary responsibility will be to develop and maintain system security plans (SSP) for both new and existing systems, in collaboration with various stakeholders.

    Responsibilities:
    • Develop system security plans (SSP) for new applications, adhering to the Secure Application Development Life Cycle (SADLC) and Michigan Security Accreditation Process (MiSAP) standards.
    • Maintain SSPs for existing applications, ensuring compliance with authority to operate (ATO) requirements and accommodating software/hardware enhancements.
    • Monitor plans of action and milestones (POA&M) and corrective action plans (CAP) related to SSPs, collaborating with the client's Enterprise Information Management (EIM) office.
    • Validate SSPs to ensure adherence to NIST control requirements.
    • Provide recommendations for enhancing customer security posture based on findings, aligning with SOM PSP & NIST controls.
    • Assist team members and vendors in collecting artifacts necessary for assessments.
    Required Skills:
    • 1 year of experience in the IT industry, with a focus on analyzing and applying information security principles.
    • 1 year of experience reviewing IT systems/applications, coupled with basic knowledge of networking components and various operating systems.
    • 1 year of experience analyzing NIST Special Publications Revision 1, Revision 3,4, or 5, and 800-53A Revision 1.
    Nice to Have:
    • 2 years of experience with other Security Frameworks (ISO, NIST, COBIT, HIPAA/HITECH, etc.) and regulatory requirements.
    • CISSP, CISA, PMP, and/or Security+ certification.
    • Experience working with software vendors to implement security controls.
    • Proven ability to work independently and in a team environment.
    • Excellent written and verbal communication skills, with the capability to explain technical concepts to non-technical audiences.
    • Ability to collaborate on multiple projects simultaneously and adapt to changing priorities and demands quickly.
    Available Benefits:

    •Medical Benefits (Platinum level plans available)

    •Work from home / Hybrid / Onsite options

    •PTO

    •Holiday Pay

    •VTO

    •401K

    •Charitable Match

    •Training reimbursement

    About K?STA I.T.:

    Our name says it all; K?STA I.T. (Keys-to-I.T.) AND our people are our keys to our success

    K?STA I.T. is a premier Utah-based technical staffing and consulting services firm. We specialize in temporary and permanent placement of Software, Hardware, Network, Cloud, CRM/ERP, Data, End-User support, Web and Executive / leadership-based positions on a full time and consulting basis.

    If you're interested in a role where top performance is rewarded, personal time is valued, and excellence is demanded at every level we want to talk to you today

    Where do you want to go? We've got the keys ~ K?STA I.T.

    WWW.KeSTAIT.COM