Influxinfosys
Senior IT Security Analyst (Onsite)
Columbus, OH
·
Contractor
Company website
The Ohio Department of Administrative Services, Office of Information Technology (OIT), is seeking an experienced and certified Senior IT Security Analyst to support the Ohio Benefits Program (OBP). This critical role involves reviewing and validating security procedures, supporting security and privacy audits, addressing exceptions, and strengthening overall system security posture to ensure confidentiality, integrity, and availability of OBP systems.
Description
Job Title: Senior IT Security Analyst – Ohio Benefits Program
Location: Columbus, Ohio (On-Site as per State Policy)
Contract Duration: July 1, 2025 – June 30, 2026
Schedule: Monday–Friday, 40 hours/week
Contract Renewal: Up to 3 additional 1-year terms (based on performance and need)
Key Responsibilities
- Review OBP documentation, policies, plans, and procedures; recommend updates to align with best practices and applicable regulations.
- Serve as a security consultant, providing technical guidance to executive stakeholders, IT managers, and security teams.
- Analyze and enhance OBP's security and privacy frameworks in alignment with NIST 800-53, MARS-E, IRS 1075, and other federal standards.
- Assist in security incident analysis and response, audit remediation, and compliance reporting.
- Evaluate and process access rights through the 7078 process.
- Represent the Office of Information Security and Privacy in inter-agency meetings as needed.
- Develop and deliver security training programs and tabletop exercises.
- Contribute to security governance alignment with Enterprise Architecture and Portfolio Management practices.
Required Skills & Qualifications
- Minimum 10 years of cybersecurity experience, preferably in large-scale government or healthcare IT environments.
- Expertise in NIST 800-53, CMS MARS-E, IRS Publication 1075, and applicable CFRs.
- Strong understanding of MS Windows, Linux, and database systems.
- Professional Certifications:
- Required: CISSP (Certified Information Systems Security Professional)
- Preferred: CISA (Certified Information Systems Auditor)
- Experience in:
- Security/privacy/IT audits
- Communicating with executive leadership
- Technical writing and policy documentation
- Using MS Office and Adobe tools
- Training development and delivery
- Project management techniques and tools
- Demonstrated ability to work both independently and within cross-functional teams.