USG1 provides top talent and technology solutions to government agencies where we aim to make a meaningful difference and add value to the mission. We look for candidates who want to make a difference to their team and its objectives, and in return, we will support you and help you in your goals and career journey.

We are looking for a senior information security architect specializing in risk assessment and technical consultation, focusing on industry-standard security, risk, and compliance, especially PCI-DSS and NIST. Looking for Expert ISO ISBA PCI-DSS

• Consult on multiple projects to recommend security best practices, develop architectures and hardening guides, and review and evaluate solutions against relevant risk frameworks and regulations. 
• Provide information security policy, process, procedure and application consulting to the NCDIT-Transportation Information Security Office and project support. 
• Lead PCI-DSS compliance activities

3-5 years of experience in the following:

• Implementing and operating a suite of standard information security technologies such as but not limited to firewalls, IDS/IPS, SIEM and network traffic capture and analysis.
• Information security frameworks such as ISO 27001, NIST 800-53 and other standards such as PCI-DSS, FISMA, OWASP, FedRAMP, and federal law and NC General Statute.
• Strong soft skills, as this position, will interface with IT and business leaders across the Agency by preparing reports and presentations to senior management
• Architecting/designing implementations, configuring, and risk assessing AWS and/or Azure cloud computing environments. 
• Hands-on experience implementing, administrating and operating technologies such as firewalls, IDS/IPS, SIEM, antivirus, network traffic analyzers. 
• Network security, security protocols, access control, cryptography, application security, and data protection. 
• Data classification, handling, assessment, and enforcement.
• Advanced knowledge of regulatory compliance including, but not limited to: OWASP, ISO, NIST, FISMA, PCI-DSS, HIPAA and IRS-1075.
• Experience leading risk assessments using industry-standard frameworks such as ISO or NIST for complex IT projects and technologies.
• Develop, lead and execute information security incident response plans, security policies, standards and procedures.
• Experience providing research and evidence in support of audits. 

• The position requires the candidate to be on-site. The site location is in Raleigh, NC. 
• This position is for our direct client, a large state agency.
• We may entertain 3rd party corp to corp engagement, but only one layer and only authentic candidates. 
• Will entertain visa transfer for the right candidate 
• All your information will be kept confidential according to EEO guidelines.

USG1 is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, income status or any other status or characteristic protected by applicable law.