Assist with program correspondence pertaining to security activities.
Analyse system requirements and documentation for security implications.
Facilitate meetings with stakeholders.
Analyse and implement security requirements into systems and programs.
Research security best practices and providing recommendations to the CISO.
Understand and seek alignment with NIST Cybersecurity Framework
Liaising between stakeholders on security activities and outstanding action items
Create and review key security deliverables as part of the organizational security programs.
Assist with security certification activities,
Review vendor security deliverables and providing feedback.
Provide security subject matter expertise on a day-to-day basis.
Verify security policies and procedures are consistently in compliance.
Develop and implement security governance activities.
Develop an organizational security governance plan.
Mandatory Requirements
Experience (14+ Years)
Requirements
This is a Hybrid Position.
Strong analytic capabilities and exemplary skills in stakeholder relationship development and management.
Exceptional security knowledge and experience.
Exceptional written and verbal communications, interpersonal skills, and the ability to manage and develop key relationships with colleagues and clients through collaborative thinking and a strong customer focus.
Proficiency with Microsoft Office suite.
Experience and demonstrated comfort level in verbal, written, and in-person communications.
Knowledge of and experience with the implementation and validation of security controls.
Experience with vulnerability discovery techniques and tools.
Knowledge of NIST 800-30 style risk assessments.
Experience with incident response and disaster recovery.
Skills in other security domains, well versed in the software development life cycle (SDLC) and the assessment of risk, and able to understand the root causes of vulnerabilities and to articulate those in written and verbal communications to clients.
Bachelor’s degree in Cybersecurity or a related field of study.
A minimum of 8 years’ relevant experience.
Preferred Skills
New York State and federal health policy experience.
Experience with New York State Department of Health programs.
Experience and training in cloud computing environments and security considerations.