Job Description

The IT Security Officer shall at least one (1) year of relevant working experience and to provide the following

• Provide subject matter expertise, oversight and reporting on all matters of security, and compliance, within scope of the engagement;

• Coordinating investigation, management, and responses to all security related incidents;

- GITSir Alerts
- GCSOC

• Operational oversight on all vulnerability assessments, audit log monitoring activities, baseline compliance and privilege user account administration;

• Yearly Security Awareness Training (Internal and Agency)

• Audit Service (validate RFI items and share with teams)

• update and promulgate account security policies, procedures, standards & guidelines and compliance to all FM and subcontractor personnel;

• Operational oversight of all FM and 3rd party leveraged security services;

• Periodic reporting to ITSM of current risk status gathered from numerous operational reports from the environments supported us. Information security issues transcend the boundaries of discrete operational areas and requires that this information be presented within a number of broad best practice security categories: i.e. Threat, Vulnerability, Compliance and Incident Management.

• These reports include:

• VMS (Nessus) reports

• Monthly security log review service

• Monthly security reporting Service

• Quarterly privilege access review service

• Monthly Imperva DAM

• Monthly Carbon Black

• Antivirus Report

• ACISO Scorecard (Patch Management, Asset Management)

• Account Review

• Asset inventory EOL, EOS and EOSL.

• ABLR Onboarding

The IT Security Officer shall also report to our client Security team in managing BAU security functions and issues.

Skills Required