Security Analyst

Job Summary:DAILY DUTIES / RESPONSIBILITIES:This information security analyst position is responsible for assisting with preparation for an IRS Safeguards Review by coordinating and assisting with the Agency’s technical andAdministrative compliance with IRS Publication 1075.Candidate Location: The candidate must be a CURRENT SC resident. No relocation allowed. PRIMARY RESPONSIBILITIESReview the Agency’s implementation of CAPs and provide expert advice on the effectiveness of CAP implementations and Safeguard Review readiness of evidence and artifacts.Review the Agency’s SSR, SSPs, and SSAs for compliance with Pub 1075 and provide expert advice and assistance towards Safeguard Review readiness of security control implementation, evidence, and artifacts.Identify relevant IRS SCSEMs, evaluate the Agency’s compliance with relevant SCSEMs, and provide technical advice and assistancein remediating non-compliance.Coordinate Safeguard Review preparation, by planning, coordinating, reporting, and communicating using the Agency’s project management methods.Coordinate and assist with follow-up to the Safeguard Review, including development of CAPS to resolve findings. OTHER RESPONSIBILITIES INCLUDE:Provide expert opinion for proposed technical solutions for agency applications and IT infrastructure activities regarding requirements from IRS Pub 1075.Research potential technical solutions for bringing agency applications and infrastructure into Pub 1075 compliance. Required Skills5+ years of experience performing expert-level security analysis, including risk assessments, vulnerability management, and security incident response.3+ years of experience preparing for and actively participating in IRS Safeguard Reviews in collaboration with a state agency.3+ years of experience working with the IRS Safeguard Computer Security Evaluation Matrix (SCSEM), including implementation, compliance assessment, and documentation.3+ years of experience with IRS Pub 1075 (Rev. 11-2021) Preferred SkillsExperience with Child Support Enforcement ProgramExperience with Federal or State Regulatory Compliance such as FISMA, NIST, or IRS Publication 1075Experience with technical documentation and audit support