Data Security Consultant

3 weeks ago

Saint Paul, United States Quetica, LLC Full time
Job DescriptionJob Description

Quetica is seeking a part-time Data Security Consultant and Local Agency Security Officer resource to work with the Minnesota Department of Public Safety (DPS) and Driver and Vehicle Services (DVS) to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal Justice Information Services (CJIS) security guidelines; 2) are Payment Card Industry (PCI) compliant; and 3) meet or exceed current “best practices” regarding driver’s license and motor vehicle data security; and to serve as a Local Agency Security Officer (LASO) for DVS’s use of CJIS.  

At a high level, the resource will act as the primary information security contact between DVS and the CJIS System Agency (CSA) under which DVS interfaces with the Federal Bureau of Investigation (FBI) CJIS Division and the Minnesota Bureau of Criminal Apprehension (BCA). The Local Agency Security Officer (LASO) actively represents DVS in all matters pertaining to information security, disseminates information security alerts and other material to constituents, and maintains information security documentation to include system configuration files. The LASO will assist with information security audits or hardware and procedures, and keeps the CSA informed as to any information security needs and problems. 

The part-time work is expected to be done remotely. 

Sample Tasks include:
  • Assist with evaluation of architecture interfacing with other state/federal/local systems.
  • Assist with assessing the security of any equipment needed.
  • Assist with the evaluation of data integrity and data security.
  • Assist with ensuring all background check compliance is met for all project team members.
  • Assist with creating procedures to ensure the proper access rights are granted.
  • Assist in building User Acceptance Testing (UAT) scenarios to ensure security requirements are properly tested and documented.
  • Assist with architecture reviews of all environments.
  • Assist with the evaluation and testing of disaster recovery plans.
  • Assist with the development of change management processes and procedure projects.
  • Provide written documentation and recommendations.     
  • Review agency network diagrams and access control lists (ACL) for compliance with FBI CJIS Security Policy and BCA CJDN Security Policy.
  • Work with DVS staff, review IT security audit documentation from local agencies which access DVS systems and data to determine compliance with FBI CJIS Security Policy and BCA CJDN Security Policy requirements.
  • Provide technical guidance, principles, standards, and best practices to guide criminal justice agency infrastructure design and system implementations to comply with FBI CJIS Security Policy and BCA CJDN Security Policy.
  • Perform technical analysis of vendor solutions to assess compliance with FBI CJIS Security Policy and BCA CJDN Security Policy.

Access public government data to the extent allowable by law, including data in the State’s possession that would otherwise be classified as not public under Minnesota Statutes section 13.82. Analyze security needs for all DVS projects, DVS systems, and systems that interface with DVS systems. Transition and train new DVS security staff for duties including: Work with DPS agencies and other government entities to ensure driver and vehicle data is accessible for utilization for mission critical functions while maintaining all security requirements.

  • Deputy Registrar Security
  • Identity Access Management (AIM)
  • PCI Compliance
  • Policy Auditing
DVS securities and LASO duties
  • DVS Securities duties will include:
    • Deputy Registrar Security
    • IAM
    • PCI Compliance
    • Policy Auditing
    • Physical Security of Facilities
    • Fraud and Investigations
    • ADLMV Management
    • Technical Review/Architect
  • The LASO duties will include:
    • Identify who is using the CSA approved hardware, software, and firmware and ensure no unauthorized individuals or processes have access to the same.
    • Identify and document how the equipment is connected to the state system.
    • Ensure that personnel security screening procedures are being followed as stated in FBI CJIS Security Policy and the MNJIS 5002 policy
    • Ensure the approved and appropriate security measures are in place and working as expected.
    • Support policy compliance and ensure the CSA ISO is promptly informed of security incidents.
    • Conduct an annual audit of CJIS compliance and track remediation efforts on any items found
    • Maintaining CJIS compliant network architecture
    • Properly vetting all individuals with access to DVS physical and logical resources through the access control systems and best IAM practices
    • Properly vetting all software and hardware vendors for CJIS compliance
    • Working closely with MN.IT to utilize enterprise resources when possible and involving MN.IT on all technical projects
    • Active involvement in all data access requests that may contain CJI to ensure CJI is protected accordingly
    • Work through vendor agreements to ensure all security requirements are met or exceeded
    • Reviewing MN.IT scans of DVS resources and monitoring identified vulnerabilities and remediation efforts
Provide knowledge transfer. Audit identity and access management to assure they are properly managed and maintained for all systems utilized to access driver’s license and motor vehicle registration data; and recommend remedial action when required. Audit the driver’s license and motor vehicle systems for PCI compliance; and recommend remedial action when required.Minimum Qualifications
  • Six (6) years’ experience in a security architect or engineer role.
  • Three (3) years’ experience in network engineering, including firewall management.
  • Four (4) or more engagements, within the last ten (10) years, in a security architect or engineer role where the engagement was longer than three months each.
  • Experience with the design and implementation of information systems, in organizations with more than 50 people, with an emphasis on data, network, and infrastructure security.
  • CISSP or GIAC certification.
  • Comprehensive knowledge of hardware, software, application, and systems engineering.
  • Broad knowledge of database systems, web-based technologies, and network security.
  • Systems thinking – the ability to see how parts interact with the whole (“big picture” thinking).
  • Knowledge of IT governance and operations.
  • Interpersonal and leadership skills – servant leadership, collaboration, facilitation, and negotiation skills.
  • Communication skills – both written and verbal.
  • Ability to explain complex technical issues in a way that non-technical people may understand.
  • Time management and prioritization.
Mode of Interview

Interviews will be conducted remotely via Microsoft Teams.

Project Schedule

Anticipated Project Start Date: July 1, 2024
Anticipated Project End Date: June 30, 2026

Company Overview

Quetica is a specialized consulting and product development firm led by industry experts with deep expertise in engineering, information technology and big data solutions. Quetica helps state and government agencies, commercial clients and financial institutions globally to efficiently and effectively accelerate business growth, achieve sustainable cost reduction and accomplish better service levels through delivery of hands-on practical expertise and world class solutions.

Powered by JazzHR

jfjrRix5Uh

  • Data Security Consultant: MN

    1 week ago

    Saint Paul, United States NextRow Digital Full time

    Job DescriptionJob DescriptionResource Title: Data Security ConsultantLocation: St Paul, MN Duration: Long Term ContractSample TasksAssist with evaluation of architecture interfacing with other state/federal/local systems.Assist with assessing the security of any equipment needed.Assist with the evaluation of data integrity and data security.Assist with...

  • Data Security Consultant

    2 weeks ago

    Saint Paul, United States The Methodical Group Full time

    Job DescriptionJob DescriptionSample Tasks:Assist with evaluation of architecture interfacing with other state/federal/local systems.Assist with assessing the security of any equipment needed.Assist with the evaluation of data integrity and data security.Assist with ensuring all background check compliance is met for all project team members.Assist with...

  • Data Security Consultant and Local Agency Security Officer

    2 weeks ago

    Saint Paul, Minnesota, United States Genesis10 Full time

    Genesis10 is seeking a Data Security Consultant and Local Agency Security Officer (LASO) for a contract with our client in St. Paul, MN. 100% Remote.Key Responsibilities: Assist with evaluation of architecture interfacing with other state/federal/local systems. Assist with assessing the security of any equipment needed. Assist with the evaluation of data...

  • Data Security Consultant and Local Agency Security Officer

    2 days ago

    Saint Paul, Minnesota, United States Genesis10 Full time

    Genesis10 is seeking a Data Security Consultant and Local Agency Security Officer (LASO) for a contract with our client in St. Paul, MN. 100% Remote.Key Responsibilities: Assist with evaluation of architecture interfacing with other state/federal/local systems. Assist with assessing the security of any equipment needed. Assist with the evaluation of data...

  • Data Security Consultant: MN: Remote

    3 weeks ago

    Saint Paul, United States NextRow Digital Full time

    Job DescriptionJob DescriptionResource Title: Data Security ConsultantLocation: St Paul, MN (Remote) Duration: Long Term ContractSample TasksAssist with evaluation of architecture interfacing with other state/federal/local systems.Assist with assessing the security of any equipment needed.Assist with the evaluation of data integrity and data security.Assist...

  • Data Security Consultant

    2 weeks ago

    St Paul, United States Quetica LLC Full time

    Quetica is seeking a part-time Data Security Consultant and Local Agency Security Officer resource to work with the Minnesota Department of Public Safety (DPS) and Driver and Vehicle Services (DVS) to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal...

  • Data Security Consultant

    1 week ago

    St Paul, United States IO Datasphere Full time

    If you are interested in this position: Download the skills matrix using the button below and fill it out. Email us and attach the completed skills form and your most recent resume to us at: jobs@iodatasphere.com Please include ' 9595MN Skills Form ' and your name in the subject line. For Minnesota positions you must follow the format in the Sample Skills...

  • Data Security Consultant

    3 days ago

    St Paul, United States IRIS Consulting Corporation Full time

    The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal Justice Information...

  • Data Security Consultant

    2 days ago

    St Paul, United States IRIS Consulting Corporation Full time

    The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal Justice Information...

  • Data Security Consultant

    3 weeks ago

    St Paul, United States IRIS Consulting Corporation Full time

    The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal Justice Information...

  • Data Security Consultant

    2 weeks ago

    St Paul, United States The Methodical Group Full time

    Job Description Job Description Sample Tasks: Assist with evaluation of architecture interfacing with other state/federal/local systems. Assist with assessing the security of any equipment needed. Assist with the evaluation of data integrity and data security. Assist with ensuring all background check compliance is met for all project team members. Assist...

  • MNIT/DPS DVS Data Security Consultant and Local Agency Security Officer

    3 weeks ago

    Saint Paul, United States RICEFW Technologies Inc Full time

    Description of Project The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal Criminal...

  • Information Security Consultant

    2 weeks ago

    Saint Paul, Minnesota, United States Securian Full time

    At Securian Financial the internal title for this position is Info Security Consultant or Info Security Sr Con. The title and salary will be determined based on experience and applied skills. Position OverviewThe Cybersecurity Risk Consultant operates within the Cybersecurity Risk Team in close partnership with Cybersecurity Governance, Cybersecurity...

  • Information Security Consultant

    2 weeks ago

    Saint Paul, Minnesota, United States Securian Full time

    At Securian Financial the internal title for this position is Info Security Consultant or Info Security Sr Con. The title and salary will be determined based on experience and applied skills. Position OverviewThe Cybersecurity Risk Consultant operates within the Cybersecurity Risk Team in close partnership with Cybersecurity Governance, Cybersecurity...

  • Information Security Consultant

    2 days ago

    Saint Paul, Minnesota, United States Securian Full time

    At Securian Financial the internal title for this position is Info Security Consultant or Info Security Sr Con. The title and salary will be determined based on experience and applied skills. Position OverviewThe Cybersecurity Risk Consultant operates within the Cybersecurity Risk Team in close partnership with Cybersecurity Governance, Cybersecurity...

  • Data Science Consultant

    2 weeks ago

    Saint Paul, Minnesota, United States Securian Full time

    *At Securian Financial the internal position title is Data Science Consultant*Overview:As a Data Science Consultant at Securian Financial, you will develop data-driven solutions leveraging state-of-the-art practices and tools to help drive business outcomes that align with Securian's Enterprise Data Strategy Vision and Operating Principles. You'll partner...

  • W2 - Security Architect (CJIS, RealID, Data, Network, infrastructure security, Firewall management,

    3 weeks ago

    Saint Paul, United States Tanson Corp Full time

    Job DescriptionJob DescriptionDescription:The work is expected to be done in a hybrid manner. On-site location may vary in the Saint Paul/ Metro area. The resource is expected to work 20-30 hours a week. Hours may vary per week dependent upon the urgency of their current project. The resource will be on-site 10-days a month. Days on-site may vary per month...

  • DVS Data Security Consultant and Local Agency Security Officer

    3 days ago

    St Paul, United States Mindteck Full time

    Description of Project The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal...

  • DVS Data Security Consultant and Local Agency Security Officer

    2 days ago

    St Paul, United States Mindteck Full time

    Description of Project The Minnesota Department of Information Technology Services (MNIT) partnering with the Department of Public Safety (DPS), Driver and Vehicle Services (DVS) is seeking a resource to conduct comprehensive audits of data systems including its infrastructure, policies and procedures, to assure: 1) all data meets or exceeds federal...

  • Implementation Consultant

    2 weeks ago

    Saint Paul, Minnesota, United States Granicus Full time

    Granicus is looking for an Implementation Consultant. This role lives within the customer experience arm of the Granicus' Digital Communications and Engagement Implementation Team. This role is perfect for an individual with a passion for helping government agencies connect with their communities to achieve their strategic objectives. Your role starts at...