Security Analyst (Information Systems Specialist 7) - IT Modernization Project
$75,216 - $113,664/Yr
United States Department of Justice - Washington, DC
posted 20 days ago
Full-time - Senior
Remote - Washington, DC
10,001+ employees
Justice, Public Order, and Safety Activities
About the position
The Oregon Department of Justice is seeking a Security Analyst (Information Systems Specialist 7) to lead and support information security management for the Legal Tools Replacement (LTR) Program. This senior-level position is responsible for ensuring secure software development practices and providing expertise in information security governance, risk, and compliance. The role involves collaboration with technical teams to validate security measures and manage audits, assessments, and security plans, contributing to the overall success of the Legal Tools Program.
Responsibilities
- Lead and support information security management for the Legal Tools Replacement (LTR) Program.
- Provide technical staff with information, education, guidance, and hands-on support for secure software development.
- Manage, plan, and coordinate security audits, risk assessments, and secure code reviews.
- Analyze designs and solutions for confidentiality, integrity, and availability of DOJ managed systems.
- Inform and assist staff in adhering to secure system security lifecycle best practices.
- Provide expertise in information security governance, risk, and compliance activities.
- Report recommendations to leadership in response to audits or security findings.
- Evaluate potential software solutions for security compliance with DOJ standards.
- Develop system security plans, policies, and guidelines in collaboration with teams.
- Manage information security measures for the protection of agency data.
Requirements
- Six years of information systems experience in managing security for cloud and on-premises systems.
- Education in Computer Science, Information Technology, or related field can count as experience.
- Experience developing and implementing system security plans.
- Served as a mentor and resource for creating information security procedures.
- Effective communication skills at all organizational levels.
- Knowledge of NIST Security and Privacy Frameworks.
Nice-to-haves
- Certifications in ISP, CISSP, CCSP, GSEC, Security+, or equivalent.
- Desire and ability to learn and master new technical and business skills.
- Proactive troubleshooting and problem-solving skills.
Benefits
- Competitive salary range of $6,268 - $9,472.
- Excellent medical, vision, and dental benefits.
- Pension and retirement programs.
- Paid Sick Leave, Vacation, Personal Business Leave, and 10 paid holidays a year.
