Application Security Engineer with State Client in Montpelier VT

REQUIREMENTS: Extensive knowledge of FBI CJIS Policy as it relates to Information Technology Security. Extensive knowledge of NIST and SOC2 compliance requirements. Knowledge of Public Safety and Criminal Justice information systems and best practices for same. For this particular request, Functional requirements include: Assess Wide Area Network (WAN) and/or Local Area Network (LAN) impact Assess security, data classification(s), subsystem designs, architectures, and computer systems as delivered in production use for compliance with CJIS Policy, State requirements, and leading practices. Ensure system use toolsets & strategies consistent with the State's CIO policies, including security & digital records management. Assess the architecture of the proposed hardware & software with regard to security & systems integration with other applications within the Agency/Department, and within the Agency/Department & existing or planned Enterprise Applications. Assess implementation of interfaces between systems to ensure compliance with CJIS Policy, State requirements, and leading practices. Assess implementation of user authentication to ensure compliance with CJIS Policy, State requirements, and leading practices. Assess a project's backup/recovery strategy and implementation, and the project's disaster recovery plans/infrastructure for adequacy & compliance with State policy and best practices.