Information Security Risk Analyst

About The Position

Requirements

• Knowledge of common information security management frameworks such as the NIST Risk Management Framework, NIST Cybersecurity Framework, Payment Card Industry Data Security Standards (PCI-DSS), and Texas Information Security Standards.
• Experience working in a Federal or State environment.
• Experience performing security assessments, risk assessments and reviews of account permissions, computer data access needs, security violations, and programming changes.
• Experience supporting the implementation of computer system security plans with agency personnel and outside vendors
• Experience developing plans to safeguard computer configuration and data files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Experience monitoring and maintaining systems and procedures to protect data systems and databases from unauthorized access.
• Experience researching systems and procedures for the prevention, detection, containment, and correct of data security breaches.
• Experience assisting in designing and deploying security applications and infrastructure program activities.

Responsibilities

• Assist the TxDOT Information Security Risk Management team to accomplish various risk management efforts such as contract reviews, software, and hardware evaluations, writing system security plans, conducting security and risk assessments, working with custodians to resolve remediation plans.
• Work involves planning, implementing, and monitoring security measures using the NIST Risk Management Framework and Texas security frameworks for information systems and infrastructures.
• Works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.

Benefits

• medical insurance (TGL shares a percentage of the cost)
• life insurance
• a matching 401(k) plan
• a cafeteria plan