- The ITS Security & Compliance department is responsible for the oversight and coordination of all security and compliance-related functions for the Information Technology & Services (ITS) division
- The ITS Security and Compliance Analyst plays a key role in carrying out this responsibility, by maintaining a strong relationship with departments which support key information technologies such as applications, databases, networking devices, operating systems, SAN and storage devices
- The analyst is assigned to one or more departments which support these key technologies and is responsible for ensuring that all cyber assets in their assigned areas maintain an adequate level of security
- The analyst is also responsible for helping their assigned departments gain a clear understanding of internally and externally-defined compliance requirements
- These security and compliance related responsibilities will be executed within the framework developed and maintained by the ITS Security & Compliance Manager, the ITS Security & Compliance Lead and Analysts in order to ensure consistent application of security and compliance requirements across the ITS organization Additionally, the ITS Security and Compliance Analyst will be called upon to serve as a member and/or leader of assigned various projects and initiatives related to the functions and responsibilities of the ITS Security & Compliance Department as required
- In order to effectively perform these responsibilities, the ITS Security & Compliance Analyst must have effective communication skills, a strong understanding of information security fundamentals and principles, a deep understanding of the NERC CIP and SAS/70 compliance requirements and a knowledge of the area of information technology they are assigned to support
- Experience working as a system administrator for the AIX, Linux OR Windows operating system
- Experience facilitating the development and documentation of security policies, standards and procedures for the AIX, Linux OR Windows platforms
- Experience with identifying, evaluating and developing plans to mitigate security risks and vulnerabilities for the AIX, Linux, OR Windows platforms
- Strong written and verbal and communications skills
- Strong attention to detail
- Experience working in an area of information technology that was subject to compliance with externally defined requirements. If the candidate does not have compliance experience, that is OK, as PJM is willing to train on the compliance piece
Please Include Job Title and Location in the Subject Line of Your Email
No comments:
Post a Comment