Comprehensive knowledge of Information Security principles; including information security trends, emerging technologies, best-practices, controls, models, architecture, etc.
Practical experience with identity and access management, IT risk management, business continuity and IT disaster recovery planning, security awareness education and training, security vulnerability management, and security incident management.
Familiarity with the Commonwealth of Virginia’s Information Security Standards and/or the National Institute of Standards and Technology Publication 800-53.
Able to communicate effectively in writing and orally, exercise judgment, interpret laws and policies, and maintain effective working relationships with a wide variety of individuals in both the public and private sectors
Experience in monitoring IT environments for compliance with information security architecture policies and standards.
Substantial technical experience in 2 or more: Cloud-based technologies, Identity & Access Management, Vulnerability Management, firewalls, computer forensic techniques, databases, collaboration tools, web & mail services.
Ability to provide input and security direction for future designs, information security capabilities, and strategic technology alternatives.
Excellent written and oral communication and presentation skills (possessing the ability to break down complex technical terms into everyday language).
Demonstrated ability to work with a broad cross-section of personnel including all levels of management and external entities such as consultants and service providers to explain security measures and collaborate and disseminate security related information in partnership with the Office of Information Security.
Work experience in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
Thorough understanding of customers priorities and the business criticality of platforms, applications and services.