Review work of team members as related to reviewing, verifying, and validating SDLC documentation such as Software Requirement Specifications, Software Master Test Plans, and Software Version Descriptions.
The Information Security Analyst III is responsible for assessing, monitoring and executing a portion of General Motors Financial's Information Security Program. Completes tasks designed to ensure security of the organization's systems and information assets.
The PTL Information Assurance SME acts as the lead for all Information Assurance issues and provide guidance in the development, implementation and administration of Information Assurance security procedures, in accordance with established Federal Information Security Management Act (FISMA) directives and regulations.
Designs and implements information assurance and security engineering systems with requirements of business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis, and security management).
Actively participate in and/or facilitate the development, review and approval of requirements and deliverables required to support design control risk management related activities and ensure consistency between projects and products.
Performs complex product evaluations, recommends and implements products/services for network security. Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
Analyzes both business and system requirements for system requests, upgrades, and replacements to ensure compatibility with IT standards and architectures Able to coordinate the implementation of small projects to successful implementation.
Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems; evaluate firewall change requests and assess organizational risk.
The role of a Systems Engineer Information Assurance (Expert) is to support Cyber Security/Information Assurance Authorization and Approval (A&A) tasks on the Program. This A&A Engineer will serve as an Information Systems Security Officer (ISSO) and will be responsible for security processes and implementation supporting a large customer on a new multi-year contract.
Performs or leads security requirements analysis, security requirements definition, system security design, security architecture generation, security trade studies, and security verification and validation with little or no supervision.
Provides technical and administrative support in modifying, designing, and setting up applications security. Evaluates and resolves security-related problems, and advises users on security issues. Works with multiple business units, within a specific platform environment, on multi-project assignments. Guides and advises less experienced Systems Security Analysts.