IT Security Consultant - Harrisburg, PA - Georgia IT Inc.

Harrisburg, PA

About the Job

Position : IT Security Consultant
Location : Harrisburg, PA
Hire Type : 06 months plus contract
Rate : DOE
Start : Immediately

US Citizens and Green Card, GC-EAD and TN VISA accepted.

Job Description:

Technical Consultant

The Contractor will act in the role of Information Security Engineer, supporting security operations. This role reports directly to the Chief Information Security Officer (CISO).
Provide a first line of response for daily cybersecurity activities and inquiries from IT and business personnel.
Technical Lead for Third Party Risk Management (TPRM)
Critically review vendor cybersecurity assessment/scan reports and TPRM questionnaires.
Conduct oversight of critical vendors. Identify security issues and track to closure.

Technical Lead for Cloud Security

Identify processes and controls to monitor vendor cloud environments to maintain risk transparency. This includes security configurations, vulnerabilities and suspicious activity.
Identify processes and controls to identify and mitigate risk within PSERS' cloud implementations.
Technical Lead for Threat and Vulnerability Management
Evaluate cybersecurity advisories, communicate internally and influence vulnerability remediation.
Facilitate remediation of cybersecurity issues. Track to closure.
Improve processes to reduce Mean-Time-to-Remediate vulnerabilities and Adversary Dwell Time.
Recommend process and controls to mitigate adversary Tactics, Techniques and Procedures (TTPs).

Technical Lead for Monitoring and Incident Response

Enhance log/event centralization and monitoring via Security Information and Event Management (SIEM) software.
Evaluate existing Security Operations Center (SOC) monitoring services and make recommendations for improvement.
Review SIEM analysis reports and alerts. Investigate suspicious activity. Participate in incident response activities.
Provide after-hours support coverage.

Act as an Information Systems Security Officer (ISSO)
Support deployment and administration of PSERS' security devices and software.
Coordinate and support cybersecurity assessments by external firms.
Communicate security standards requirements within project and change advisory board meetings.
Work with employees to document risk register entries.
Draft custom role-based security awareness content.
Design and implement enhanced security metrics and reporting.
Contribute to strategic planning and annual goals for the cybersecurity program.
Assist with yearly IT audits

Position works closely with.

PSERS IT Team
Commonwealth of Pennsylvania Information Security Team
Vendor Information Security Teams

Source : Georgia IT Inc.