Info Security Specialist II

DMV IT Service LLC is seeking an experienced Info Security Specialist II to support Phase 2 of the ECM Change Management Audit Remediation program. This role involves deep-diving into applications, coordinating response across application teams, and owning IAM aspects. The consultant will facilitate and document privileged access, align with PAM standards, and drive remediation planning.

Requirements

• Plan, schedule, and facilitate application deep-dive assessment sessions with app and service owners.
• Tailor assessment question sets to hosting model (on-premise/SaaS), access model, and application criticality.
• Drive application response completion (surveys, interviews, workshops) and ensure evidence is stored in approved repositories.
• Define and document privileged access for each application (roles, entitlements, credentials, service accounts, cloud admin roles) in alignment with PAM standards.
• Analyze, Risk Scoring & Reporting
• Ensure outcomes align with IAM Policy and PAM Standard definitions and controls.
• Partner with application teams to confirm privileged access scopes for upcoming PAR/PUAR campaigns and certify in-scope accounts.
• Coordinate with platform owners to onboard/vault credentials and secrets in CyberArk.
• Ensure Okta access patterns and SailPoint IIQ governance reflect agreed entitlements.
• Update CMDB attributes and ServiceNow IRM records to reflect final risk ratings and control states.
• Strong communication and documentation skills
• Relevant IAM or security certifications