Information Systems Security Officer

1 week ago

Columbia, United States SunPlus Data Group, Inc Full time
Job DescriptionJob Description

SunPlus is looking for an Information Systems Security Officer for the State of South Carolina in Columbia.

  • This is for 12 months with possible extension
  • Hours are Monday through Friday, 40 hrs per week
  • Pay rate: $90 W2 hourly (NO C2C/3rd party candidates)

**This position is onsite**

**It usually takes the government 2-3 weeks to start interviewing

SCOPE OF THE PROJECT:

The Office of Cybersecurity (OCS) is responsible the Security and Compliance of Information Systems and Data. OCS seeks an expert Senior ISSO to oversee (and actively participate in) the day-to-day security and compliance requirements of complex information system operating environments. A successful Senior ISSO will lead the establishment, implementation and/or enhancement of Information Systems Security and Compliance efforts based on State/Agency Policy/Standards and Regulatory Guidance such as FISMA, NIST, CMS MARS-E, HIPAA, etc.)

DAILY DUTIES / RESPONSIBILITIES:

The Senior ISSO will report to the Security Risk and Compliance Manager in OCS and operate as an experienced cybersecurity consultant to SCDHHS leadership, business units, business partners and vendors.

Security Program Experience:

Leadership experience with CMS MARS-E or other FISMA Risk Management Framework (RMF) compliant programs is strongly desired and will be given the highest weight. Experience should include well documented success in the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related interviews and audit/assessment activities to complete and verify these and other RMF/Assessment and Authorization (A&A) tasks and artifacts.

Experience with development and integration of RMF/A&A tasks and artifacts in RMF type roles such as; ISSO, Information Security Architect, Security Control Assessor, etc., into the System Development Life Cycle (SDLC) is ideal.

Experience in security as related to Cloud services and vendor management is considered desirable for this position.

Technical Knowledge:

Hands on experience with any or all of the following technologies would be considered a desirable for this position:

1. RSA Archer
2. Enterprise NoSQL Database
3. IBM System 390/zSeries
4. Linux and Windows servers
5. Network Firewalls, Intrusion Prevention Systems (IPS), Switching and Routing Infrastructure
6. Security Information and Event Management (SIEM) solutions
7. Identity and Access Management (IAM) solutions

General Duties and Responsibilities:

1. Perform detailed architectural reviews and risk analysis of security related requests in order to make sound decision making recommendations, such as:
a. Network Design and Information Flow
b. System and Data Access Models
c. Review Firewall Rule Requests (Ports, Protocols, and Services)
d. Baseline Configuration Management Deviation Requests
e. Vulnerability Management
2. Champion the design, development, implementation, and/or ongoing maturation of SCDHHS security and compliance efforts.
3. Audit and assess internal agency systems as well as business partner/service provider information system security controls.
4. Utilize Microsoft Office software suite, System Center Service Manager (Ticketing system), RSA Archer eGRC system, Bizagi, Atlassian and other products to document and report on information gathered during Audit and Assessment activities or other OCS efforts.
5. Perform security and compliance reviews of Contracts, Business Associate Agreements, Data Usage/Sharing Agreements, and other types of documents
and artifacts.
6. Serve as primary point of contact for third-party audits and/or assessments
of agency and business partner systems
7. Collaborate with agency leadership, business partners, and other parties/ stakeholders to provide recommendations for security and compliance risk mitigation efforts.

Required Knowledge/Skills:

1. Must have a strong working knowledge of FISMA, NIST, CMS MARS-E and HIPAA Security and Privacy.
2. 5+ years of experience in IT working with and/or auditing IBM System 390/zSeries, Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure, and Web-based Applications.
3. Prior experience working within a FISMA compliant program.
4. Prior experience in working with any eGRC systems.
5. Prior Health Information Technology experience.
6. ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required.
7. Ability to work independently and as a member of a team.
8. Ability to collaborate and coordinate with multiple teams and vendors.
9. Ability to multitask and prioritize tasks effectively in order to meet deadlines.
10. Experience and training with eGRC solutions.
11. Ability to engage diverse audiences of varying technical and non-technical skill-levels to ensure effective alignment of technical requirements to business objectives.
12. Ability to collaborate and coordinate efforts amongst multiple teams and vendors in fulfillment of SCDHHS OCS initiatives.
13. Ability to multitask and prioritize tasks effectively in order to meet deadlines in a results-oriented environment.
14. Must have intermediate to advanced skills in Microsoft Office products (Word, Excel, PowerPoint, Visio) to include working with templates and style guidelines for branding consistency.
15. Keen attention to detail while maintaining the ability to see the big picture.
16. Ability to absorb, retain and communicate complex processes.
17. Ability to accept changes and constructive criticism and remain flexible in dealing with leadership and teams of varying technical and business knowledge.

Preferred Requirements/Skills:

1. BS degree in computer science or similar discipline.
2. Prior ITIL experience in the area of Information Security Management.

REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):

1. 5+ years of experience in IT working with and/or auditing IBM System 390/zSeries, Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure and Web-based Applications.
2. Prior experience working within a FISMA compliant program.

3. Prior experience in working with any eGRC systems.

4. Prior Health Information Technology experience.

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):

1. Prior ITIL experience in the area of Information Security Management.

REQUIRED EDUCATION/CERTIFICATIONS:

1. ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required.

PREFERRED EDUCATION/CERTIFICATIONS:

1. Bachelor's in a related area or 10+ years of experience in the field or in a related area.
Additional Sills:

Company DescriptionSunPlus Data Group is a company whose senior management has logged more than 60 man-years in managing Projects, Software engineering, production, and supply chain processes in Government, Aerospace / Aviation, Defense, Healthcare, Manufacturing, Energy, and Communications industries. SunPlus offers market-tested industry-specific solutions and consulting services ranging from project portfolio management, program management, business process automation, business intelligence, and advanced analytics to staffing and outsourcing.

Over the last 20 years, SunPlus Data Group has grown from a five-person technology company to a full-blown consulting and project management consultancy firm. SunPlus consultants have logged thousands of billable hours working with diverse clients nationwide.

SunPlus Data Group, Inc is an SBA 8(a) Certified, GSA schedule holder and Minority Owned firm based in Atlanta, GA providing services to our clients all over the United States.Company DescriptionSunPlus Data Group is a company whose senior management has logged more than 60 man-years in managing Projects, Software engineering, production, and supply chain processes in Government, Aerospace / Aviation, Defense, Healthcare, Manufacturing, Energy, and Communications industries. SunPlus offers market-tested industry-specific solutions and consulting services ranging from project portfolio management, program management, business process automation, business intelligence, and advanced analytics to staffing and outsourcing. \r
\r
Over the last 20 years, SunPlus Data Group has grown from a five-person technology company to a full-blown consulting and project management consultancy firm. SunPlus consultants have logged thousands of billable hours working with diverse clients nationwide.\r
\r
SunPlus Data Group, Inc is an SBA 8(a) Certified, GSA schedule holder and Minority Owned firm based in Atlanta, GA providing services to our clients all over the United States.

  • Chief Information Security Officer

    3 weeks ago

    Columbia, Maryland, United States iNovex Information Systems Full time

    Job Title: Chief Information Security OfficerAbout the Job:This role is responsible for designing, developing, and implementing secure networking, computing, and enclave environments. The ideal candidate will have experience with Cybersecurity policy, procedures, and workforce structure.Key Responsibilities:Participate in engineering teams for design,...

  • Information System Security Engineer 2

    1 month ago

    Columbia, United States iNovex Information Systems Full time

    Job Brief ORANGE you glad that you chose RealmOne. Information System Security Engineer (ISSE) (Level 2) Job Description ORANGE you glad that you chose RealmOne? RealmOne was built on the principle that people matter first and foremost. We believe in providing a strong work/life balance by investing in our employees and encouraging professional and personal...

  • Information System Security Engineer

    1 week ago

    Columbia, Maryland, United States iNovex Information Systems Full time

    Senior Cybersecurity RoleiNovex Information Systems is seeking a seasoned Information System Security Engineer - Cybersecurity Expertise to join our team. This is a senior-level role that requires extensive experience in cybersecurity principles and technology. The successful candidate will possess a deep understanding of security standards and regulations,...

  • Information System Security Officer

    3 days ago

    Columbia, United States SYSTEMTEC Full time

    Information System Security Officer SYSTEMTEC is seeking an Information System Security Officer for a high-profile, long-term opportunity in Columbia, SC.Required Qualifications of the Information System Security Officer:Applicants must be authorized to work for any employer in the U.S. We are unable to provide sponsorship or work with Third-Party...

  • Information System Security Officer

    2 days ago

    Columbia, United States SYSTEMTEC Full time

    Information System Security Officer SYSTEMTEC is seeking an Information System Security Officer for a high-profile, long-term opportunity in Columbia, SC.Required Qualifications of the Information System Security Officer:Applicants must be authorized to work for any employer in the U.S. We are unable to provide sponsorship or work with Third-Party...

  • Information Systems Security Officer

    3 weeks ago

    Columbia, United States ManTech Full time

    ManTech is seeking a motivated, career and customer-oriented Information Systems Security Officer (ISSO), to join our team in Maryland. Join ManTech’s mission-focused national security team delivering enterprise infrastructure capabilities for a global workforce. This role will support the Intelligence Community’s Enterprise Information Technology (EIT)...

  • Senior Information System Security Officer

    13 hours ago

    Columbia, United States Infojini Inc Full time

    Duration : 12 Months contract with possible extensionWork Setting : Onsite | Will need to relocate if non-localDAILY DUTIES / RESPONSIBILITIES:The Senior ISSO will report to the Security Risk and Compliance Manager in OCS and operate as an experienced cybersecurity consultant to leadership, business units, business partners and vendors.Security Program...

  • Senior Information System Security Officer

    4 hours ago

    Columbia, United States Infojini Inc Full time

    Duration : 12 Months contract with possible extensionWork Setting : Onsite | Will need to relocate if non-localDAILY DUTIES / RESPONSIBILITIES:The Senior ISSO will report to the Security Risk and Compliance Manager in OCS and operate as an experienced cybersecurity consultant to leadership, business units, business partners and vendors.Security Program...

  • Senior Information Systems Security Officer

    4 weeks ago

    Columbia, United States DP Professionals Full time

    DPP is seeking a Senior Information Systems Security Officer (ISS0) for an opportunity in Columbia, SC. Work arrangement: Fully onsiteW2 position; 12+ months Job description:The client is seeking an expert Senior ISSO to oversee (and actively participate in) the day-to-day security and compliance requirements of complex information system operating...

  • Information Systems Security Officer 3

    4 weeks ago

    Columbia, United States Amentum Full time

    We are seeking an Information Systems Security Officer (ISSO) 3 for a prime contract that is based out of our Columbia, MD office. Responsibilities: Provide support for a program, organization, system, or enclave's information assurance program. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies,...

  • Unarmed Security Officer

    3 weeks ago

    Columbia, United States First Coast Security Services Full time

    Job Skills / Requirements With a culture of recognition and reputation for world-class security, First Coast Security Services is an elite security company that is operating across the United States! Our passion lies in protecting each customer‘s best interests - whatever, wherever, and whoever that may be. Our...

  • Information Systems Security Engineer III

    2 months ago

    Columbia, United States Jacobs Full time

    We are seeking a Information Systems Security Engineer LV3 for a prime contract that is based out of our Columbia, MD office.   Responsibilities:  Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave...

  • Network Security Architect

    1 week ago

    Columbia, Maryland, United States iNovex Information Systems Full time

    About Our TeamiNovex Information Systems is a dynamic and innovative company that delivers advanced cybersecurity, data science, and software engineering services and products to customers in the Government and commercial sectors.Job DescriptionWe are seeking a highly skilled Network Security Architect to design and implement secure enterprise-wide systems....

  • Information Systems Security Engineer

    13 hours ago

    Columbia, United States Independent Software Full time

    Job DescriptionJob DescriptionWhat you will be doing: In the role of an Information Systems Security Engineer, you will be responsible for performing or reviewing technical security assessments of computing environments to identify vulnerabilities and non-compliance with established Information Assurance (IA) standards and regulations. You will then...

  • Enterprise Security Expert

    2 weeks ago

    Columbia, Maryland, United States iNovex Information Systems Full time

    About the RoleWe are seeking a highly skilled System Engineer with experience in Algorithm Evolution, Post Quantum Computing, and Next Gen authenticators to join our team. The successful candidate will be responsible for supporting the full lifecycle management of enterprise-wide systems.The ideal candidate will have at least ten years of experience as a...

  • Information Systems Security Professional

    2 weeks ago

    Columbia, Maryland, United States Amentum Full time

    About Amentum:We are a leading provider of professional services, seeking a highly skilled Information Systems Security Professional to join our team. In this role, you will have the opportunity to work on prime contracts and collaborate with customers.Key Responsibilities:Demonstrate expertise in designing, developing, implementing, evaluating, and...

  • Senior ISSE

    3 months ago

    Columbia City, United States ULTRA ELECTRONICS OCEAN SYSTEMS INC. Full time

    Unleash the Power of Multi-Mission Excellence: Safeguarding the Seas for the World's Navies.Step into a world where cutting-edge technology meets unparalleled expertise. Ultra Maritime pioneers delivering multi-mission solutions that protect and empower the naval forces worldwide. With our extensive portfolio of capabilities, our innovations are utilised on...

  • Security Architect and Engineer

    1 week ago

    Columbia, Maryland, United States iNovex Information Systems Full time

    Cybersecurity ProfessionaliNovex Information Systems is seeking a talented Security Architect and Engineer to join our team. This is an exciting opportunity to work on mission-critical projects and contribute to the success of our customers.The successful candidate will possess excellent technical skills, including experience with cybersecurity principles...

  • Unarmed Security Officer

    5 days ago

    Columbia, United States First Coast Security Services Full time

    Overview OverviewStart your career in security with First Coast Security Services! We are a leading provider of security officer for a wide variety of companies. People from all experience levels are encouraged to apply!With a culture of recognition and reputation for world-class security, First Coast Security Services...

  • Information Systems Security Engineer III

    4 weeks ago

    Columbia, United States Amentum Full time

    We are seeking a Information Systems Security Engineer LV3 for a prime contract that is based out of our Columbia, MD office.Responsibilities: Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave...