AAMVA (American Association of Motor Vehicle Administrators) · 4 days ago
IT Security Analyst
Wonder how qualified you are to the job?
Insider Connection @AAMVA (American Association of Motor Vehicle Administrators)
Responsibilities
Operate with a high degree of independence and self-leadership regarding the management of compliance activities and associated risk activities.
Establish guidelines for the development and maintenance of security documentation against SOC 2 Type II and NIST/FedRAMP standards.
Facilitate cross collaborative discussions with IT teams to assess and validate control design and implementation details.
Document and maintain effective and practical policies and procedures to secure sensitive data and ensure compliance with relevant control objectives, legislation, and contractual obligations.
Recommend programmatic and technical directions to enhance the maturity of security controls.
Internally assess, evaluate, and make recommendations to Management regarding the adequacy of security controls and compliance for information systems.
Support the CISO in strengthening the organization-wide information security compliance program.
Interact in oral and written communications with all levels of staff including technical staff, contract, finance, human resources, senior management, legal, and external auditors.
Develop comprehensive remediation briefings outlining security gaps/deficiencies identified in audit findings (IT Financial Audit, SOC 2 Type II Audit, FedRAMP Assessment).
Perform other duties as assigned to maintain the reputation of the organization as a viable business partner.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor’s degree with six to eight years of experience in information security, or IT operations
College level courses and/or equivalent work experience may be substituted
Security or auditor certifications are a definitive plus (such as CISA, CISM, CCSP)
Strong working knowledge of FedRAMP requirements, processes, and controls
Strong project management or project coordination experience (ex: defining project scope, implementing project timelines and milestones, driving deliverables, identifying risks, gaps, and deficiencies with organization processes)
Excellent Interpersonal and communication skills
Strong understanding of cloud security principles and best practices (e.g. Microsoft Azure)
Experience developing and maintaining Corrective Action Plans and Standard Operating Procedures
Proficient in MS Office (Word, Excel, and PowerPoint) and SharePoint
Strong attention to detail; ability to multitask and prioritize workload and meet deadlines
Solid experience with compliance frameworks supporting FISMA/NIST, SOC2, and PCI
Detailed oriented
Ability to adapt quickly to new technologies and changing regulatory landscape
United States citizenship required
Preferred
Experience with compliance frameworks supporting FISMA/NIST, SOC2, and PCI
Company
AAMVA (American Association of Motor Vehicle Administrators)
The American Association of Motor Vehicle Administrators (AAMVA) is a tax-exempt, nonprofit organization developing model programs in motor vehicle administration, law enforcement and highway safety.