IT Security Specialist st
2 weeks ago
Job Description
Job Description
Job Title:
IT Security Specialist st (Remote)
Location:
Raleigh NC
Duration:
12+ Months
Job Description:
The client requiring services of an IT Security Compliance Specialist
to assist and assess the client Application and Infrastructure Modernization(AIM) CMS, USDA and ACF requirements for the project.
In addition this resource must also review the RFP, MOU and MOA for privacy, security, Business Continuity Planning, Disaster Recovery and audit requirements.
This resource must identify the risks and assist in the development of mitigation strategies, and to establish the target
security/infrastructure
architecture.
Duties include, are not limited to:
The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.
This candidate will be expected to continuously assess the development process and suggest improvements.
Supports the ISSO with the management of system security plans, ensure the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification and provide support to achieve all activities associated with the Assessment and Authorization (A&A) process.
Provides support and security compliance to meet the security standards for Applications and systems in Cloud environments (AWS or Azure or Google etc.).
Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.
Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies; The program participates in the IT Continuous Monitoring Program.
Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.
Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.
Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.
Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.
Monitor infrastructure assets and services, evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.
Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informing Senior Leadership of security measures in place.
Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.
It is imperative that the candidate possess and apply a comprehensive system security knowledge across key tasks and high impact assignments.
5+ years of related work experience
5 years’ experience providing security compliance requirements for Applications in Cloud environments (AWS or Azure or Google etc.)
5 years’ experience updating or maintaining SSP/SSPP documents.
5 years’ experience participating in Assessment & Authorization (A&A/ATO)
5 years’ experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53
5 years’ experience providing security engineering review and recommendations.
5 years’ experience working with large teams in an Agile environment.
5 years ISSO experience
Experience coordinating and working under an ATO.
Experience assessing system modifications such as major and minor releases and potential security impacts.
Experience providing recommendations for improvement to amend vulnerabilities.
Experience assisting Program Managers and Senior Leadership developing Correction Action Plans (CAPs) when responding to IT and Financial audits.
The ideal candidate will have experience working with current and emerging information security technologies, privacy and development methodologies. Bachelor’s degree in computer science, management information systems, or related field preferred.
Candidate must have security architecture
knowledge like TOGAF and MITA.
Good analytical and creative problem solving skills, and relies on experience and judgment to plan and accomplish goals, independently performs a variety of complicated tasks, with a wide degree of creativity and latitude is expected.
Skills:
Skill
Required / Desired
Amount
of Experience Experience implementing AWS Security
configurationsRequired3YearsExperience
performing Security Operations Center capabilities such as Logging and Monitoring, Incident Handling, Disaster
Recovery.Required3YearsExperience
providing security compliance requirements for Applications/ Systems in Cloud Environments (AWS, Azure, Google
cloud)Required3YearsMust
be able to review & assess MES systems throughout all phases of their life cycle in an effort to identify Privacy, Security
ArchitectureRequired5YearsRisk
Management - must be able to Identify gaps through risk management, and assist in the development of mitigation
strategies.Required5YearsExperience
updating privacy and security policies based on gaps found through an assessment
process.Required5YearsExperience
documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate
personnelRequired5YearsMust
be able to serve as a knowledge base for organizations as it relates to CMS and state compliance requirements & mitigation
strategies.Required3YearsExperience
Performing risk assessments based on NIST 800-53 Rev 4. HIPAA, SSA and IRS Pub
1075.Required5YearsExperience
with network mapping and vulnerability scanning tools such as NESSUS and
NMAP.Required5YearsExperience
in reviewing RFP, RFQ, MOU and MOA for privacy and security architecture
requiremetnsRequired5YearsExperience
in reviewing the Business Continuity plans, Disaster Recovery Testing plans based on Federal and State
requirementsRequired3YearsMITA
(Medicaid Information Technology Architecture) ExperienceHighly
desired3YearsExperience
performing DevSecOps Engineering
capabilitiesDesired3Years
Powered by JazzHR
k3zcgZZGEb
#J-18808-Ljbffr
-
IT Security Specialist st
2 weeks ago
Raleigh, United States Serigor Inc. Full timeJob DescriptionJob DescriptionJob Title: IT Security Specialist st (Remote)Location: Raleigh NCDuration: 12+ MonthsJob Description:The client requiring services of an IT Security Compliance Specialist to assist and assess the client Application and Infrastructure Modernization(AIM) CMS, USDA and ACF requirements for the project. In addition this resource...
-
NCDHHS- PSO IT Security Specialist st
1 week ago
Raleigh, United States HonorVet Technologies Full timeJob title- NCDHHS- PSO IT Security Specialist st Remote Duties include, are not limited to: The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information. This candidate will be expected to continuously assess the development process and suggest improvements. Supports the...
-
IT Security Specialist
3 weeks ago
Raleigh, United States NR Consulting Full timeJob Description Job Title: IT Security Specialist Location: Dix Campus Raleigh, NC (Hybrid 2 days a week) Position Type: Contract with possible extension Duration: 12+ months Contract Short Description: Seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk...
-
IT Security Specialist
2 weeks ago
Raleigh, United States NR Consulting Full timeJob Description Job Title: IT Security Specialist Location: Dix Campus Raleigh, NC (Hybrid 2 days a week) Position Type: Contract with possible extension Duration: 12+ months ContractShort Description: Seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk...
-
IT Security Specialist
4 days ago
Raleigh, United States NR Consulting Full timeJob Description Job Title: IT Security Specialist Location: Dix Campus Raleigh, NC (Hybrid 2 days a week) Position Type: Contract with possible extension Duration: 12+ months ContractShort Description: Seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk...
-
IT Security Specialist
4 days ago
Raleigh, United States Crescens Full timeJob title: IT Security Specialist Location: Raleigh, NC [Onsite] Duration: 5+ months Type: contractJob Description : Client - Privacy and Security Office (PSO) requiring services of an IT Security Specialist to aid county offices in the identification of gaps through risk management, and assist in the development of mitigation strategies, and to establish...
-
IT Security Specialist
4 weeks ago
Raleigh, United States JSM Consulting Full timePosition IT Security Specialist - Sr. Location Raleigh North Carolina***All work must be performed on State premises at the manager's discretionJob Duties Risk Management - must be able to Identify gaps through risk management and assist in the development of mitigation strategies - Required 7Years Experience updating privacy and security policies...
-
IT Security Specialist
1 month ago
Raleigh, North Carolina, United States JSM Consulting Full timePosition IT Security Specialist Sr. Location Raleigh North Carolina***All work must be performed on State premises at the manager's discretionJob Duties Risk Management - must be able to Identify gaps through risk management and assist in the development of mitigation strategies Required 7Years Experience updating privacy and security policies based on gaps...
-
Security Specialist- Expert
4 weeks ago
Raleigh, United States Serigor Inc Full timeJob Title: Security Specialist- Expert (Remote)Location: Raleigh, NCDuration: 12+ MonthsJob Description:This supplemental staff position will be working with the Network Security team for the 1st half of 2024. The skills required are on the configuration processes of Cisco ASA & FTD firewalls, Cisco Secure Client 5.x (used to be AnyConnect), Cisco Identity...
-
Security Specialist- Expert
2 weeks ago
Raleigh, United States Serigor Inc Full timeJob Title: Security Specialist- Expert (Remote)Location: Raleigh, NCDuration: 12+ MonthsJob Description:This supplemental staff position will be working with the Network Security team for the 1st half of 2024. The skills required are on the configuration processes of Cisco ASA & FTD firewalls, Cisco Secure Client 5.x (used to be AnyConnect), Cisco Identity...
-
Security Specialist- Expert
3 weeks ago
Raleigh, United States Serigor Inc. Full timeJob DescriptionJob DescriptionJob Title: Security Specialist- Expert (Remote)Location: Raleigh, NCDuration: 12+ MonthsJob Description:This supplemental staff position will be working with the Network Security team for the 1st half of 2024. The skills required are on the configuration processes of Cisco ASA & FTD firewalls, Cisco Secure Client 5.x (used to...
-
Inside Sales Specialist
3 weeks ago
Raleigh, United States Safe Haven Security Full timeJob DescriptionJob DescriptionAt Safe Haven Security, we are more than just a home security company! We are a team of dedicated professionals who are passionate about making a difference in the lives of our customers and our employees. Our mission is to provide peace of mind and protection to families across the country, and we achieve this by offering...
-
PSO IT Security Specialist
12 hours ago
Raleigh, United States raag solutions Full timeWe are looking for an Information Technology (IT) professional with a strong background in application security testing, utilizing tools such as BURP Suite, Fortify, and manual testing. NC DHHS - Privacy and Security Office (PSO) requiring services of an IT Security Specialist to perform application security testing, ethical hacking and vulnerability...
-
Security Specialist
4 weeks ago
Raleigh, United States Focused HR Solutions Full time $60 - $80This job is remote and has been since 2020 and has not changed. All work will be completed onsite at the manager's discretion. Our client has an opening for a Security Specialist - Sr (719317)This position is for 12 months, with the option of an extension and the client is in Raleigh, NC Job details:Risk Management: Must be able to Identify...
-
Security Specialist
6 days ago
Raleigh, United States Focused HR Solutions Full time $60 - $80This job is remote and has been since 2020 and has not changed. All work will be completed onsite at the manager's discretion. Our client has an opening for a Security Specialist - Sr (719317)This position is for 12 months, with the option of an extension and the client is in Raleigh, NC Job details:Risk Management: Must be able to Identify gaps...
-
IT Security Specialist
2 weeks ago
Raleigh, United States LanceSoft Full timeResponsibilities: Perform Business Impact Analysys Create Business Continuity Planing (BCP), Disaster Recovery Testing (DR), Continuity of Operations (COOP) for the division Conduct Access Control Reviews Moniter Employee HIP nd Security Training Perform NIST and HIPAA based risk assessments - NIST 800-53 rev 5 and remediate identified gaps Review CAPS\POAMS...
-
IT Security Specialist
3 weeks ago
Raleigh, United States LanceSoft Full timeResponsibilities: Perform Business Impact Analysys Create Business Continuity Planing (BCP), Disaster Recovery Testing (DR), Continuity of Operations (COOP) for the division Conduct Access Control Reviews Moniter Employee HIP nd Security Training Perform NIST and HIPAA based risk assessments - NIST 800-53 rev 5 and remediate identified gaps Review CAPSPOAMS...
-
IT Security Specialist
4 days ago
Raleigh, United States LanceSoft Full timeResponsibilities: Perform Business Impact Analysys Create Business Continuity Planing (BCP), Disaster Recovery Testing (DR), Continuity of Operations (COOP) for the division Conduct Access Control Reviews Moniter Employee HIP nd Security Training Perform NIST and HIPAA based risk assessments - NIST 800-53 rev 5 and remediate identified gaps Review CAPS\POAMS...
-
Technical Specialist
2 weeks ago
Raleigh, United States Georgia IT Inc Full timePosition - Technical Specialist Location - Raleigh, NC Duration: 12Months Rate: DOE US Citizens and those authorized to work in the U.S are encouraged to apply. We are unable to sponsor at this time. Job Description VueJS SharePoint OOTB Power Automate, Nintex CSOM, PNP
-
Technical Specialist
4 days ago
Raleigh, United States Georgia IT Inc Full timePosition - Technical Specialist Location - Raleigh, NC Duration: 12Months Rate: DOE US Citizens and those authorized to work in the U.S are encouraged to apply. We are unable to sponsor at this time. Job Description VueJS SharePoint OOTB Power Automate, Nintex CSOM, PNP