IT Security Analyst

Job Description

Job Title : Information Technology (IT) Security Analyst

Location : 1401 E Broad Street, Richmond, VA (VDOT Central Office)

Client : Virginia Information technology agency (VITA).

Note : This is a hybrid position.

Job Overview

The Virginia Department of Transportation is seeking an IT Security Analyst to support our Information Security mission. This position focuses on security analysis for procurement teams and ensures adherence to Commonwealth of Virginia Information Security Policies and Standards.

Key Responsibilities

• Document processes and script narratives / executive summaries.
• Create business-focused documentation for a diverse audience with varying technical backgrounds.
• Provide insights on information security and IT procurement methodologies.
• Research and draft guidance on alignment with security policies and standards.
• Conduct security compliance evaluations and risk analyses.
• Make procurement recommendations based on security evaluations.
• Work with business areas and cross-functional Procurement Analysts / Enterprise Architects to understand business needs.
• Provide strategic consultation on security and risk-averse acquisition.
• Collaborate with architects and technical teams to develop roadmaps and strategies that support agency KPIs.
• Consult on initiatives, offering tactical direction and considerations for legacy solutions.

Qualifications

Knowledge & Experience :

• Comprehensive understanding of information security principles, trends, and best practices.
• Practical experience in identity and access management, IT risk management, business continuity, security awareness, and incident management.
• Familiarity with Commonwealth of Virginia’s Information Security Standards or NIST SP 800-53.

Exceptional written and oral communication skills, with the ability to simplify complex technical terms for diverse audiences.

Experience in business writing and presentations.

Interpersonal Skills :

• Ability to maintain effective relationships with a wide range of stakeholders in both public and private sectors.
• Demonstrated capacity to work collaboratively with cross-sectional personnel, including management, consultants, and external agencies.
• Experience working in fast-paced environments and the ability to quickly acquire new skills to meet customer needs.

Required / Desired Skills :

• Knowledge and application of security best practices : - Required Proficient / SME
• Experience in security review / risk analysis : - Required Proficient / SME
• Knowledge of IT procurement : - Required Proficient
• Experience in business writing and presenting : - Required Proficient
• Educational or career experience in Cybersecurity
• IT Governance, or related fields : - Required Proficient / SME

If you are : bright, motivated, skilled, a difference-maker, able to get things done, work with minimum direction, enthusiastic, a thinker, able to juggle and multi-task, communicate effectively, and lead, then we would like to hear from you.

We need exceptionally capable people for this role for our client, so get back to us and tell us why you think you are a fit.

About Us :

Since 2000, Tri-Force Consulting Services ( https : / / triforce-inc.com ) has been an MBE / SDB certified IT Consulting firm in the Philadelphia region.

Tri-Force specializes in IT staffing, software development (web and mobile apps), systems integration, data analytics, system automation, cybersecurity, and cloud technology solutions for government and commercial clients.

Tri-Force works with clients to overcome obstacles such as increasing productivity, increasing efficiencies through automation, and lowering costs.

Our clients benefit from our three distinguishing core values : integrity, diligence, and technological excellence. Tri-Force is a six-time winner among the fastest-growing companies in Philadelphia and a four-time winner on the Inc.

5000 list of the nation's fastest-growing companies.

Requirements

Required / Desired Skills : Skill Requirement : Knowledge and application of security best practices : Required Proficient / SME Experience in security review / risk analysis : Required Proficient / SME Knowledge of IT procurement : Required Proficient Experience in business writing and presenting : Required Proficient Educational or career experience in Cybersecurity, IT Governance, or related fields : Required Proficient / SME Virginia’s Information Security Standards and / or the National Institute of Standards and Technology Publication 800-53.