Cloud Security Analyst/Director (CCSP/CISA/CISSP)

at Innosoul inc
Published May 12, 2022
Location Raleigh, NC
Category Default  
Job Type Full-time  

Description

Job ID NC-677290 (913090519) Onsite Cloud Security AnalystDirector (CCSPCISACISSP) with AWSAzureGoogle Cloud Platform, NIST, HIPAA, Soc2 Type2, FedRamp, HITRUST, OWASP Top 10, and testing experience Location Raleigh NC (PSO) Duration 12 months Positions 1 (11) All work must be completed on site at the clientrsquos discretion. Skill Required Desired Amount of Experience CISSP CISA CCSP Any security specialty certification on one of the leading cloud platforms (AWSAzureGoogle Cloud Platform) Required Performing the security assessments using NIST 800-53 r4 security controlP Required 5 Years HIPAA Privacy Security compliance Required 3 Years Experience reviewing Soc2 Type2, FedRamp, HITRUST compliance reports Required 3 Years Knowledge of cloud native security services provided by the AWSAzureGoogle Cloud Platform cloud platforms Required Experience in performing the network, web and database security assessments. Required Familiar with the tools and techniques to find and remediate OWASP TOP 10 vulnerabilities of web applications Required Experience in performing penetration testing on the web applications deployed on the cloud platform Required Must be able to demonstrate excellent program management, negotiation, communication and problem-solving skills. Responsible for working with both senior-level business executives and IT personnel to define and execute program requirements and manage stakeholder expectations. Strategically plan and manage initiatives consisting of program components that meet Departmental, State and other stakeholder expectations. Responsible for the leadership, direction and oversight of the project team(s) and of all vendor related activities tied to the program. Report to Sr. Executive Management. Authorize and manage internal and external relationships (agency, Federal, vendor, and other State agencies) and dependencies across initiative components to ensure successful delivery of the program. Responsible for establishing and executing adequate project management controls based on industry accepted methodologies and standards. These controls include the responsibility to monitor and control cost, schedule, performance and risk to ensure quality and security overall integration and issues resolution and to perform administrative functions. bull Experience in performing the security assessments using NIST 800-53 r4 security controls. bull Experience in implementing the controls for HIPAA Privacy Security compliance. bull Experience in reviewing the Soc2 Type2, FedRamp, HITRUST compliance reports bull Proficient in using the vulnerability management tools and remediating those identified vulnerabilities. bull Experience in performing the network, web and database security assessments. bull Familiar with the tools and techniques to find and remediate OWASP TOP 10 vulnerabilities of the web applications. bull Experience in performing penetration testing on the web applications deployed on the cloud platform. bull Knowledge of cloud native security services provided by the AWSAzureGoogle Cloud Platform cloud platforms. CISSP CISA CCSP Any security specialty certification on one of the leading cloud platforms (AWSAzureGoogle Cloud Platform

Drop files here browse files ...