|
Position Title
|
DATA/INFORMATION Architect
|
|
Position Id
|
6414-1
|
|
Agency
|
Department of Administration
|
|
Duration
|
5 Months +
|
|
Work Location
|
4430 BROAD RIVER ROAD, COLUMBIA, SC 29210
|
SCOPE OF THE PROJECT:
Will work as an Information Security Architect/Engineer in the Division of Information Security and assist with the implementation, integration and operationalizing advanced security technologies. Develop operational plans for integrating and implementing security technologies within existing division and agency infrastructure and operational processes. Develop full life cycle processes and procedures along with repeatable guides for standard implementation and assist agencies as needed to incorporate systems.
DAILY DUTIES / RESPONSIBILITIES:
Information Security architecting, engineering and operations. This is a full information security to include, systems, network and procedural.
Work with existing staff to architect and deploy advanced information security systems in a highly complex distributed enterprise environment.
Develop installation, configuration, and operational process/procedure documentation to enable Division of Technology and Agencies to install and operate approved security solution.
Work with Security Operations Center to identify enhanced data collection and correlation capabilities in existing data and gaps in data collection/analysis architecture, systems and procedures.
Identify and develop solutions for preventing, detecting and mitigating risks to information and information systems.
Conduct training as necessary to division and agency personnel on security processes, procedures and methodologies to ensure security event information is properly identified, correlated, documented and mitigated in accordance with department standards.
REQUIRED EDUCATION:
Bachelor’s degree or 8 to 10 years’ experience.
PREFERRED CERTIFICATIONS:
CISSP, CEH, MCSE, CCSP
|
Category
|
Name
|
Last Used
|
Last Used by Candidate (Year)
|
Experience
|
Candidate Exp. (in years)
|
|
Network Security
|
information security principles and practices
|
Currently Using
|
6 + Years
|
||
|
Network Security
|
IT Security
|
Currently Using
|
6 + Years
|
||
|
Network Security
|
Security Information Architecture
|
Currently Using
|
6 + Years
|
||
|
Network Security
|
Application Security
|
Within 1 Year
|
6 + Years
|
||
|
Network Security
|
risk/vulnerability assessments
|
Within 10 Years
|
6 + Years
|
||
|
Network Security
|
Role Based Access Control (RBAC)
|
Within 1 Year
|
6 + Years
|
||
|
Network Security
|
Security Information Event Management (SIEM) systems development / configuration
|
Within 1 Year
|
6 + Years
|
||
|
Networking & Directories
|
Access control logging and reporting systems
|
Currently Using
|
6 + Years
|
||
|
Networking & Directories
|
Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.
|
Currently Using
|
6 + Years
|
||
|
Networking & Directories
|
Information Security
|
Currently Using
|
6 + Years
|
||
|
Networking & Directories
|
Network security
|
Currently Using
|
6 + Years
|
||
|
Networking & Directories
|
data discovery and data loss prevention (DLP)
|
Within 1 Year
|
6 + Years
|
||
|
Networking & Directories
|
Identity Access Management (IAM)
|
Within 1 Year
|
6 + Years
|
||
|
Networking & Directories
|
privileged user management (PUM)
|
Within 1 Year
|
6 + Years
|
||
|
Specialties
|
Event Handling
|
Within 1 Year
|
6 + Years
|
||
|
Specialties
|
IBM
|
Within 1 Year
|
6 + Years
|
Cyber Awareness and understanding
Expert understanding of information, computer and network security. Its operation, engineering, and architecture.
Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.
Expert understanding of access control logging and reporting systems.PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
- Identity Access Management (IAM)
- Role Based Access Controls (RBAC)
- Privileged User Management (PUM)
- Data Loss Prevention (DLP)
- Security Information Event Management (SIEM) systems
- Vulnerability Assessment (VA)
- Applications Security (AppSec)
- User metadata and Information Security event collection, logging and correlation
- McAfee e-Policy Orchestrator (ePO) / DoD HBSS
- Tenable Security Center / Nessus
- IBM AppScan.