|Date Posted||October 2, 2021|
The client requires a senior information security architect specializing in risk assessment and technical consultation, focusing on industry standard security, risk, and compliance, especially PCI-DSS and NIST.
***The candidate will be allowed to work remotely until all staff return to site. At that point the candidate will be required to come onsite.
***The candidate will need to come onsite the first day to collect equipment.
This architect resource will consult on multiple projects to recommend security best practices, develop architectures and hardening guides, and review and evaluate solutions against relevant risk frameworks and regulations. This resource will provide information security policy, process, procedure and application consulting to the Information Security Office and project support. This resource will assist PCI-DSS compliance activities for NCDOT. This resource should possess senior information security technical skillsets as well as senior soft skills as this resource will interface with IT and business leaders across the agency. This resource should possess senior skillsets in preparing reports and presentations to senior management, program/project management and related staff on the recommendations, issues and status of any given IT information security aspect of a project or initiative. This resource must have extensive advanced information security practitioner experience with hands-on experience implementing and operating a suite of standard information security technologies such as but not limited to firewalls, IDS/IPS, SIEM and network traffic capture and analysis. The position will require extensive experience and knowledge of information security frameworks such as ISO 27001, NIST 800-53 and other standards such as PCI-DSS, FISMA, OWASP, FedRAMP, and federal law and General Statute. This position will benefit from familiarity and experience with IT architecture frameworks and methodologies such as SABSA and TOGAF.