IT Security Analyst 2

Job Title : IT Security Analyst 2
Work Type : Onsite
Location : Richmond, VA 23219
Start Date : 07/01/2026
End Date : 06/30/2027
Industry Category : Information Technology / Cybersecurity
Employment Type : 1099 Contract
Pay Rate : $24 – $44 per hour
Requisition ID : 803209

Overview

We are seeking an experienced IT Security Analyst 2 to support enterprise security initiatives for the Virginia Department of Transportation (VDOT). This role is responsible for monitoring, assessing, and strengthening information security controls across agency systems and operations while supporting security compliance, risk management, vulnerability remediation, incident response, and security awareness efforts.

Application

Applications will be reviewed on a rolling basis.

Please note:

• Maximum vendor submittals allowed: 2 per opening
• In-person interview is required
• Candidates must physically reside within the United States for the duration of the assignment in accordance with Commonwealth of Virginia security policies

Job Description

The IT Security Analyst 2 serves as a key contributor to the agency’s cybersecurity program, ensuring that information security controls are effective, compliant, and aligned with organizational objectives. This position supports security operations through project coordination, security assessments, vulnerability management, policy development, incident response coordination, and user security awareness initiatives.

The successful candidate will work independently on medium-complexity security efforts, collaborate with agency leadership and audit teams, and help maintain a secure technology environment across the organization.

Responsibilities

Information Security Operations

• Monitor and evaluate information security controls to ensure they are operating effectively and as intended
• Identify security risks and recommend remediation strategies to strengthen the agency’s security posture
• Coordinate and execute IT security-related projects across the organization
• Support security governance initiatives and compliance efforts

Security Assessments & Risk Management

• Conduct data classification assessments across agency environments
• Perform security audits and evaluate compliance with established security standards
• Develop, track, and manage remediation plans for identified security findings
• Assess security vulnerabilities and coordinate mitigation activities

Policy, Compliance & Documentation

• Develop, maintain, and publish information security policies, procedures, standards, and guidelines
• Ensure alignment with Commonwealth of Virginia IT security policies, standards, and guidelines
• Prepare security-related documentation, notifications, alerts, web content, and procedural materials
• Maintain accurate security records and compliance documentation

Incident Response & Security Awareness

• Coordinate response efforts for information security incidents
• Support investigation and resolution of security events and vulnerabilities
• Develop and maintain security awareness programs for agency personnel
• Promote security best practices throughout the organization

Collaboration & Stakeholder Engagement

• Partner with IT management, Internal Audit, and VITA teams to address security vulnerabilities and compliance requirements
• Provide guidance and recommendations related to information security controls and risk management
• Stay informed on emerging cybersecurity threats, technologies, and industry best practices

Requirements

Minimum Qualifications

• 5 years of experience coordinating and executing IT security-related projects
• 8 years of experience conducting data classification assessments, security audits, and managing remediation plans
• 5 years of experience ensuring internal IT security controls are appropriate and operating as intended
• Demonstrated experience working within the IT security field
• Must physically reside within the United States for the duration of the assignment
• Must be able to attend an in-person interview
• Must be legally authorized to work in the United States without employer sponsorship, now or in the future

Preferred Qualifications

• 8 years of experience collaborating with IT management, Internal Audit, and VITA to manage security vulnerabilities
• Experience supporting enterprise cybersecurity governance and compliance initiatives
• Experience developing security policies, standards, and procedural documentation
• Experience coordinating security awareness and training programs

Benefits

Compensation

This is a 1099 Contract role.

Pay Rate: $24 – $44 per hour

Schedule

• Assignment Start Date: 07/01/2026
• Assignment End Date: 06/30/2027
• Assignment Duration: 12 months
• Standard business hours
• Onsite work arrangement

Work Location

• Richmond, VA
• 100% onsite position