**Cyber Security Analyst** **6+ month contract** **Location: Augusta, Maine - must be within 3 hours of Augusta, ME** **This is onsite in Augusta 1 time a month or 1 time every other month** Top Skills: Extended Detection and Response Security Information & Event Management Systems Risk Assessment Technical Security Controls The Office of Information Services (OIS) manages infrastructure, applications, and information that enable the (SoS) to provide services to citizens and businesses . The OIS requires information security services to assist with implementation of the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) 2.0 and preparation for an independent, third-party assessment of its information system and applications. Work under the guidance of the OIS Information Security Officer and assist with implementing the NIST Cyber Security Framework 2.0 for a Moderate impact information system by gathering information, developing foundational documents, such as a System Security Plan, Minimum Security Control Implementation (Common, Shared, Tailored), Business Impact Analysis, Information System Contingency Plan, Change Management Plan, etc., and documenting applicable security controls and status (implemented, partially implemented or not implemented). The individual will perform the following: Gather information by identifying and reviewing existing documents, policies, and procedures; interviewing technical subject matter experts, stakeholders, and SoS operating units; and examining system outputs and artifacts. Utilize the gathered information to create and maintain documentation that addresses applicable security controls for the SoS information system. Create and maintain a plan of actions and milestones for identified security control gaps. Collaborate with the Department CIO, the OIS Information Security team, and OIS managers to document, implement, and monitor the information security controls for the SoS Information System Skillset Bachelor's degree in a relevant Information Technology field 5 or more years of experience in information security, including leadership roles Hands-on experience in risk management, information security assessment, security architecture, and incident response. Strong knowledge of IT infrastructure is a plus Familiarity with NIST standards (Risk Management Framework or Cybersecurity Framework) A relevant certification is preferred (e.g., CISSP, CISM, CISA) Strong communications and writing skills are required If this is a role that interests you and you’d like to learn more, click apply now and a recruiter will be in touch with you to discuss this great opportunity. We look forward to speaking with you! **About ManpowerGroup, Parent Company of:** **Manpower, Experis, Talent Solutions, and Jefferson Wells** _ManpowerGroup® (NYSE: MAN), the leading global workforce solutions company, helps organizations transform in a fast-changing world of work by sourcing, assessing, developing, and managing the talent that enables them to win. We develop innovative solutions for hundreds of thousands of organizations every year, providing them with skilled talent while finding meaningful, sustainable employment for millions of people across a wide range of industries and skills. Our expert family of brands –_ **_Manpower, Experis, Talent Solutions, and Jefferson Wells_** _–_ creates substantial value for candidates and clients across more than 75 countries and territories and has done so for over 70 years. We are recognized consistently for our diversity - as a best place to work for Women, Inclusion, Equality and Disability and in 2022 ManpowerGroup was named one of the World's Most Ethical Companies for the 13th year - all confirming our position as the brand of choice for in-demand talent. ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.