The IT Department is committed to empowering business stakeholders with technology and services that facilitate effective processes, collaboration, and communication. The goal of the Information Security division is to identify and remediate risk to the confidentiality, integrity and availability of Gwinnett County systems while minimizing the impact to workforce productivity. For more information about the IT Department, click here.
As a Security Compliance Specialist, you will be responsible for supporting compliance activities to ensure that security guidance is followed; performing security reviews to identify gaps in security architecture and collaborate with stakeholders to develop a risk management plan; and developing methods to monitor and measure risk, compliance, and assurance efforts.
Draft policies, standards, and guidelines for implementation.
Perform risk analysis whenever an application or system undergoes a major change.
Collaborate with stakeholders to establish the enterprise continuity, and disaster recovery programs.
Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements.
Participate in the acquisition process as necessary.
Coordinate requests from Internal Audit.
This job requires a public safety background check to include motor vehicle histories, criminal histories, and fingerprinting. This job may require on-call rotation and emergency after hours, weekends, and/or holidays.
Bachelor's Degree in a computer science, information systems, auditing, management, or related field and
Seven years of progressively responsible, professional experience in Information Technology environment; or
an equivalent combination of education and experience sufficient to successfully perform the essential duties of the job such as those listed above.
Valid Driver’s License
Understanding of cyber security controls and their impact on the organization.
Ability to interpret and apply laws, regulations, policies, and guidance relevant to County objectives.
Ability to monitor advancements in information technologies to ensure organizational adaptation and compliance.
Ability to develop policy, plans and strategy in compliance with laws, regulations, policies, and standards in support of organizational activities.
Knowledge of cyber security frameworks.
Ability to conduct audits and reviews of technical systems and processes.
Ability to ensure security practices are followed throughout the acquisition process.
Ability to apply supply chain risk management standards.
Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written and/or visual means.
Knowledge of business continuity and disaster recovery plans.
Relevant certifications are preferred but not required. The County can assist employees in obtaining relevant job certifications.
Internal Number: 21-00886
About Gwinnett County Government
County government technology organizations are challenged more than ever to drive innovation, to operate efficiently, to deliver cost-effective and robust solutions, to protect IT assets from cyber threats, and to position the County's infrastructure for the future. In response to these challenges, the Department of Information Technology Services is taking an enterprise view and approach with regard to the deployment of IT solutions that meet countywide business goals.
BACK TO TOP
ISACA Career Centre is Just One of the Benefits.
Discover what else ISACA has to offer!
The job you are trying to reach from was originally posted at ISACA Career Centre.