Security Analyst

We have a requirement for one security analyst starting in April 2008 through at least  September 2008.. The individual must have a good understanding of the Information Security Body of Knowledge, with FISMA and NIST security standards, CObIT Controls Framework, Sarbanes-Oxley Technical Standards, and hands-on experience performing certification reviews based on NIST security control requirements (Special Publication 800-53) and Information Security audits based on SOX 404. The individuals will be assigned to work with existing security staff to assist with the evaluation of internal controls and will assist with the redesign of controls that need to be strengthened to satisfy SOX 404 certification requirements. Individual must have work experience with both FISMA and SOX.

Both CISSP and CISA certification are required.