Information Security Business Analyst

COOLSOFT - Columbia, SC

posted 6 days ago

Full-time
Columbia, SC
Professional, Scientific, and Technical Services

About the position

The Business Analyst Project Lead will be responsible for creating and managing Information Security policies, standards, and procedural documents to ensure compliance with various regulatory requirements. This role involves coordinating with multiple stakeholders to produce quality documentation that meets both business and security needs, while also managing the Plans of Action and Milestones (POA&M) processes.

Responsibilities

  • Coordinate the independent analysis, design, implementation, and modification of information security policies, standards, and procedures to meet compliance efforts.
  • Facilitate corrective activities to mitigate risk by assisting the OCS compliance team with processes and documentation.
  • Maintain the GRC library and artifacts for federal and state regulatory audits and assessments.
  • Create deliverables and artifacts intended for audiences with various levels of technical knowledge, involving creating, sharing, revising, and publishing OCS policies and procedures.
  • Create artifacts and supporting documentation, using writing and communication skills to simplify complex information.
  • Serve as a liaison between the business community and the IT organization to provide technical solutions to meet user needs.
  • Actively scribe and facilitate scope-related OCS meetings, summarizing and capturing essential elements for project meeting minutes.
  • Perform other duties as assigned.

Requirements

  • 5+ years of technical writing experience in positions requiring the development of structured written materials and visual aids.
  • 2+ years of facilitating corrective activities to mitigate risk.
  • Ability to communicate effectively in English, both verbally and in writing.
  • Ability to interact with internal and external vendors, project team members, management, and agency departments, building relationships and using facilitation skills with both technical and non-technical personnel.
  • Ability to write, edit, and prepare technical information for both technical and non-technical personnel using appropriate and illustrative graphical elements.
  • Ability to collaborate and coordinate with multiple teams and vendors.
  • Ability to work independently and as a member of a team.
  • Ability to multitask and prioritize tasks effectively to meet deadlines.
  • Advanced skills in Microsoft Office (Word, Excel, PowerPoint, Visio, Project, etc.) including working with templates and style guidelines for branding consistency.
  • Keen attention to detail while maintaining the ability to see the big picture.
  • Ability to absorb and retain complex processes.
  • Ability to accept changes and constructive criticism in a fast turn-around environment.

Nice-to-haves

  • Prior experience in analysis, design, implementation, and modification of policies, standards, and procedures.
  • Experience with CMS MARS-E 2.2 or other NIST Risk Management Framework (RMF) compliant programs.
  • Experience in organizing information appropriately for technical explanations without losing sight of the audience's needs and aptitude.
  • 2+ years of documented IT related work experience.
  • Experience with an eGRC tool.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service