Job Description
Responsibilities:
* Provide security architecture expertise surrounding governance and security guidance over our cloud adoption strategy, with a focus on the security of storing, analyzing, and processing data with varying levels of sensitivity and regulatory requirements.
* Implement security solutions, and provide security expertise and guidance around following regulations, policies, and best practices for agency initiatives with a focus on cloud and data management.
* Support the clients in their desire to protect the business.
* Define technical and business requirements for data protection solutions, as well as, help develop business processes and policies related to securing and controlling access to data.
* Develops and recommend plans to safeguard information systems from accidental or unauthorized modification, destruction, or disclosures.
* Develop data protection strategies and implement solutions to provide data security, privacy, and integrity.
* Advise business units, Information and System Owners, and Technologist with multiple data protection strategies and solutions that include:
DLP, Data Classification, CASB, Database encryption, Tokenization, key management, API Security
* Discuss security issues with information security governance teams to determine strategies to accept, transfer, or mitigate risks.
* Work closely with business units to review and understand Data Protection requirements for new and in-flight projects and initiatives, with the ability to articulate the impacts clearly, while recommending solutions and offering practical suggestions as to remediation activities.
* Design and build Data Protection infrastructure and solutions to align with program objectives, policies, procedures, and technical control requirements.
* Write and define solution requirements and identify the business value.
* Define key performance indicators (KPIs) and key risk indicators (KRIs) for data governance and protection controls.
* Define/create operational and strategic metrics for the data protection program.
Work in a collaborative cross-matrix environment and be able to build and maintain key relationships throughout the agency.
Required Skills & Experience
Qualifications
* 7+ years of related work experience in Developing, Implementing or Architecting Information Security systems
* Functional understanding of Regulatory and Governance Frameworks (including but not limited to HIPAA, HITECH, NIST, and PCI)
* Robust understanding of Networking (TCP/IP, OSI model)
* Operating System Fundamentals (Windows, UNIX, Serverless)
* Security technologies (firewalls, IDS/IPS, EDR, etc.)
* Cloud Security models
* Knowledge of general Security Concepts and Methods (EX: vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance)
* Knowledge of disk, file, device and database encryption, and Key Management/Public Key Infrastructure (PKI), Secure information storage, Logging, monitoring, and security event management
* Application programming/scripting languages (C, Java, Perl, Shell)
* Industry recognized security certification: CCSP/CISSP/GIAC/OSCP
* Familiarity with Data Pipelines used for data ingestion and manipulation
Skills & Technologies
* Azure
* Synapse/Purview/Data Lake/Private Endpoints/Event Hubs/Snowflake/Data Factory
* Key Management Systems
* Data Classification
* Data Loss Prevention (DLP)
* Application Programming Interface (API) Security
* Cloud Security Assessments
* Knowledge of risk management frameworks (RMF)
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.