Colorado State Risk & Compliance Senior Analyst in Denver Metro, Colorado

Risk & Compliance Senior Analyst

Print

Apply

Risk & Compliance Senior Analyst

Salary

$1,768.00 - $7,083.00 Monthly

Location

Denver Metro, CO

Job Type

Full Time

Department

Governor's Office of Information Technology

Job Number

EGB92761

Closing

5/28/2018 5:00 PM Mountain

  • Description

  • Benefits

  • Questions

Department Information

What We Do:

The Governor's Office of Information Technology (OIT) strives to impact the lives of all Coloradans to create a safer, happier and healthier state. We work to empower the State of Colorado with flexible technology that will drive sustainable and intelligent business decisions. We envision a future where the end-user experience shapes design, and data analytics transform how state government serves its residents.

How We Do IT:

  • We build on the basics with cutting edge technology

  • We secure Colorado through innovation

  • We empower, engage, and energize our employees

  • We strengthen Colorado's tech landscape

Why We Want You:

We want your expertise, positive energy, drive to succeed and love of this great state as we work to elevate the expectations Coloradans have of their government.

What You'll Get From Us:

At OIT you will find an opportunity to contribute meaningful work to support and serve Colorado residents. It's your chance to combine your love of technology with public service. Plus, you'll have great benefits, motivated team members, and opportunities for flexible work hours and advancement.

Check out this video to see why our employees love working for the Governor's Office of Information Technology:

https://www.youtube.com/watch?v=K07HlT7x0-g

Description of Job

For the purposes of minimum qualification and comparative analysis, ONLY your State of Colorado job application will be reviewed. Therefore, it is paramount that you clearly describe all of your relevant experience on the application itself. Applications left blank or marked "SEE RESUME" will not be considered.

This posting may be used to fill multiple positions and will remain open or be re-opened as needed until a adequate pool of qualified applicants is obtained. Positions may be filled using this posting before the posting actually closes

The Risk & Compliance Senior Analyst is responsible for assisting with all activities related with building and running a successful risk and compliance program at the Office of Information Security (OIS).

This role is mainly responsible for:

  • Ensuring conformity of state systems to applicable federal and state, statutory regulatory, and contractual requirements.

  • Planning, developing and managing audits and risk assessment efforts to identify, quantify, and prioritize risks against established criteria.

The Senior Specialist must have:

  • 'Can-do' attitude

  • Ability to work independently and be a team player

  • Ability to think outside the box

  • Business acumen to support customer mission and need

  • Ability to work with auditors, regulatory entities and cross-functional teams

  • Skills with general computer controls and standards such as NIST800-53, Publication 1075, HIPPAA/HITECH, CJIS, etc.

  • Background in review and enforcement of security policies and procedures.

  • Ability to work with data analytics and generating metrics

  • Ability to make presentation to executive management

  • Ability to monitor for new compliance requirement, interpret the same to access how it will impact the organization

Primary Job Responsibilities:

  • Compliance and Audit Management- 60%

  • Risk and Vulnerability Management- 30%

  • Cross-Functional - 10%

Minimum Qualifications, Substitutions, Conditions of Employment & Appeal Rights

  • An undergraduate degree in IT or related discipline, or an equivalent combination of education, certifications, and experience.

  • 3-5 years professional experience in the information security field.

Preferred Qualifications:

Extensive experience with IT Security Compliance, Audit, Risk & Vulnerability Management.

One or more IT security certifications such as CISSP, CRISC, CISA.

Supplemental Information

The Governors Office of Information Technology does NOT offer sponsored Visa's for employment purposes.

ADA Accommodations: Any person with a disability as defined by the Americans with Disabilities Act (ADA) may be provided a reasonable accommodation upon request to enable the person to complete an employment assessment. To receive the accommodation, the person making the request must present medical documentation that describes the disability which justifies the accommodation. Because it requires several days for OIT to evaluate the request and prepare for the accommodation, it is essential for the person who believes he/she may need an accommodation to locate or obtain the documentation that he/she intends to submit well in advance of the assessment date. Failure to provide the medical documentation several days in advance of a comparative analysis could make it impossible for OIT to prepare for and provide the requested accommodation.

To request a reasonable test accommodation for this assessment, please contact the Center for Human Resource Management at (303)757-9216 or the contact listed on this announcement several days before the assessment date.

  • Conditions of employment: A pre-employment criminal background check will be conducted as part of the selection process, and/or other department-specific screens as required. Felony convictions or conviction of crimes of moral turpitude or conviction of misdemeanors related to job duties may disqualify you from being considered for this position.

  • Some details to be aware of: Former employees of the State of Colorado who have not left in good standing will be reviewed on a case-by-case basis.

  • Comparative Analysis Process: is the selection process used to identify the applicant that fits the job the best from a qualified applicant pool. Applications and applicants are compared to others in the pool to identify a top group. Applicants will be notified of their status in the pool via email.

  • Travel: May require travel to locations throughout the State.