Job Title: Information Technology Security Standards Consultant/Technical Writer

Client: The Maryland Longitudinal Data System Center (MLDS Center)

Term: 5 months (1^st February – 30^th June)

Overview: The Maryland Longitudinal Data System Center (The MLDS Center) seeks to engage one Information Technology Security Consultant/Technical Writer with expertise in writing technical documents as well as understanding information technology environment and system security needs. The project requires a consultant to review and revise the MLDS Center’s Data Security and Safeguarding Plan (DSSP).

Mandatory Requirements

Educational:

1. Bachelor’s Degree in Information Technology Writing / Security, or a related field.

Work Experience:

1. Proven experience in developing, revising, aligning and writing IT Security standards, particularly in best security practices.
2. Experience in writing technical documents.
3. Familiarity with IT security policies.

Scope of Work

The consultant must address the following:

1. Review and revise the MLDS Center’s Data Security and Safeguarding Plan (DSSP);
2. Authorized access and authentication for authorized access;
3. Privacy compliance standards;
4. Privacy and security audits;
5. Breach notification and procedures; and
6. Data retention and disposition policies,

The consultant must also provide:

1. Standards Analysis: Review and analyze existing documentation, industry standards, and best practices to identify areas for improvement or alignment with current agency IT practices and requirements established by the Maryland Department of Information Technology.
2. Stakeholder Collaboration: Work with Department of Information Technology (DoIT), MLDS Center IT staff and other stakeholders to gather input and ensure the revised standards meet the needs of all parties involved.
3. Chief Data Office (CDO) Policies Review: Review Statewide Data Governance Policies and Standards documents, review the data governance framework, review and incorporate modules on Data Privacy and Data Security in DSSP as needed.
4. Implementation: Provide a final revised DSSP which includes current best practices, aligns with DoIT requirements, and complies with the IT Security Manual.

Skills:

• Excellent written and verbal communication skills.
• Strong analytical and problem-solving skills.
• Ability to research, analyze, and synthesize complex information.
• Strong organizational and time-management skills.