As a Data Security Analyst you will be responsible for:
Perform detailed Data Security Risk Assessments to review data stored in and transmitted through the solution, identify and classify risks, and present mitigation strategies
Evaluate whether the effective data security controls and policies are in use
Establishing a data security risk auditing program and developing tailored audit plans for each specific system
Responsible for preforming audits of the application portfolio to validate proper data retention policies exist, data is properly encrypted, and that it is permissioned appropriately.
The work location will be at the hybrid telework, with an office location in Washington, DC.
Minimum Qualifications and Experience:
BA/BS Degree in Information Technology, Cybersecurity, or a related field (6 years additional experience may be substituted for a degree)
10+ years of experience including hands on knowledge and experience performing application security assessments
Extensive hands-on experience performing cloud data security assessments in Federal Government environments.
Specific experience analyzing data security controls in custom Salesforce applications is strongly preferred
Demonstrated knowledge of data security policies and associated application and system configurations
Understanding of Federal Records Act (FRA) and Presidential Records Act (PRA) requirements
Experience drafting and/or supporting the development of cybersecurity policies in Federal Government environments
Excellent verbal and written communication skills