Cybersecurity Gov & Risk Analyst I

Location: Hybrid, Charlotte/ Raleigh, NC (2 days onsite/week)

Duration: 12 months contract

Job Description:

• The Senior Cyber Security Governance and Risk Analyst is directly responsible for ensuring the operational reliability of Client s Bulk Electric System and Natural Gas Pipeline through demonstrated compliance with requirements defined by NERC CIP Standards and TSA Security Directives. To be successful, the Senior Cyber Security Governance and Risk Analyst must have a functional understanding of the IT Systems and Tools that support these environments, including:
  Footprints and Service Now IT service management tools
  Splunk
  Ansible Automation Platform
  Tripwire Enterprise / IP360
  Palo Alto Panorama
  Microsoft applications including Word, Excel, Visio, and PowerPoint
  Other internally developed applications that support these environments

Responsibilities:

Major Duties and Responsibilities:

• The position requires the timely gathering and maintenance of evidence items that enforce and enhance the cybersecurity posture of the data network systems that support critical infrastructures by:
• Actively participating in daily, weekly, monthly, quarterly, and annual NERC CIP and TSA compliance tasks and audit activities, as well as, participating as a subject matter expert (SME) as necessary during audits.
• Working with multiple IT / Cybersecurity teams to ensure that solutions adhere to compliance requirements defined by NERC CIP Standards and TSA Security Directives.
• Assisting with the review, evaluation and root cause identification of deficiencies that lead to compliance violations and/or near misses
• Participating in the development of mitigation plans and responsibility for completing corrective actions to address compliance violations and/or near misses
• Developing and maintaining a working knowledge of command syntax, with
  o Cisco Catalyst and Nexus switches
  o Cisco ACI
  o Cisco Routers
  o Opengear remote management terminals
  o SecureCRT or other Secure Shell terminal client
  o Citrix Web Interface
  o Use of VPN with RSA tokens
  o Adobe PDF markup

Experience:

Desired Qualifications:

• Ability to participate in and/or lead teams with minimal supervision
• CISSP and/or Certified Information Security Manager (CISM) and/or CISA
• Cisco Certified Network Associate (CCNA)
• Direct working experience with NERC CIP or NIST frameworks
• Advanced degree in Computer Science, Engineering, Legal or related field
• Demonstrated working knowledge of programming languages and tools, including:
  Python
  Visual Basic
  YAML
  JSON File Formatting
  BASH Terminal
  Bitbucket
  Linux
  Hands-on knowledge of orchestration and automation tools such as Ansible

Mobility Classification:

• Hybrid average 2 days a week in the office

Skills:

• Cyber Security, Governance, Risk, Governance, Compliance, Tripwire, Footprints, Cisco, Splunk.

Education:

• Bachelor s degree
• In addition to required degree, five (5) years minimum of related work experience
• In lieu of Bachelor s degree(s) AND 5 year(s) related work experience listed above, High School/GED AND 10 year(s) related work experience

About US Tech Solutions:

US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit .

US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.