This is a 30 month opportunity on the Hourly-Based IT Services (HBITS) Contract at the State of New York. (Possibility of extension).

Required Experience:

• 60 months of experience implementing information security and compliance programs for IT systems and OT systems.
• 60 months experience conducting written risk assessments using industry standards such as NIST, CIS Critical Controls, ISO 27001, etc.
• 48 months experience triaging and determining mitigation plans (with and/or without Vendor) to resolve security threats to business information systems.
• 48 months of experience evaluating business systems (Commercial Off Shelf and Custom Developed) for alignment with IT and OT information security policies.
• 36 months experience in securing cloud environments
• 36 months conducting information systems security analysis using Secure System Development LifeCycle (SSDLC)
• Applicable Information Security or Information Technology certifications include GSEC, GOCSP, CGEIT, CISA, CRISC, GCCC, Security+, Network+, CCSP, CSSLP, ISSAP, ISSEP, SSCCP, etc.
• Bachelor’s Degree or higher in one or more of the following: Information Security, Computer Science, Information Science, Information Assurance, Information System Management, Cybersecurity, Digital Forensics, IT Governance, Compliance and Risk Assessment