Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

IT Security Specialist st (Remote)

Remote: 
Full Remote
Contract: 
Full time
Experience: 
Senior (5-10 years)
Work from: 
United States

Offer summary

Qualifications:

Bachelor’s degree in computer science or related field preferred, 5+ years of related work experience, Security certifications like TOGAF and MITA are also preferred.

Key responsabilities:

  • Plan, implement, upgrade, and monitor security measures for computer networks and information
  • Continuously assess development process and suggest improvements
  • Coordinate with teams to develop disaster recovery capabilities and security event logging processes
  • Track, monitor, and provide oversight on security compliance and standards for systems
Serigor Inc logo
Serigor Inc Information Technology & Services SME https://www.serigor.com/
See more Serigor Inc offers

Job description

Job Title: IT Security Specialist st (Remote)
Location: Raleigh NC
Duration: 12+ Months

Job Description:
The client requiring services of an IT Security Compliance Specialist to assist and assess the client Application and Infrastructure Modernization(AIM) CMS, USDA and ACF requirements for the project. In addition this resource must also review the RFP, MOU and MOA for privacy, security, Business Continuity Planning, Disaster Recovery and audit requirements. This resource must identify the risks and assist in the development of mitigation strategies, and to establish the target security/infrastructure architecture.

Duties include, are not limited to:
  • The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.
  • This candidate will be expected to continuously assess the development process and suggest improvements.
  • Supports the ISSO with the management of system security plans, ensure the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification and provide support to achieve all activities associated with the Assessment and Authorization (A&A) process.
  • Provides support and security compliance to meet the security standards for Applications and systems in Cloud environments (AWS or Azure or Google etc.).
  • Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.
  • Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies; The program participates in the IT Continuous Monitoring Program.
  • Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.
  • Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.
  • Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.
  • Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.
  • Monitor infrastructure assets and services, evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.
  • Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informing Senior Leadership of security measures in place.
  • Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.
  • It is imperative that the candidate possess and apply a comprehensive system security knowledge across key tasks and high impact assignments.
  • 5+ years of related work experience
  • 5 years’ experience providing security compliance requirements for Applications in Cloud environments (AWS or Azure or Google etc.)
  • 5 years’ experience updating or maintaining SSP/SSPP documents.
  • 5 years’ experience participating in Assessment & Authorization (A&A/ATO)
  • 5 years’ experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53
  • 5 years’ experience providing security engineering review and recommendations.
  • 5 years’ experience working with large teams in an Agile environment.
  • 5 years ISSO experience
  • Experience coordinating and working under an ATO.
  • Experience assessing system modifications such as major and minor releases and potential security impacts.
  • Experience providing recommendations for improvement to amend vulnerabilities.
  • Experience assisting Program Managers and Senior Leadership developing Correction Action Plans (CAPs) when responding to IT and Financial audits.

The ideal candidate will have experience working with current and emerging information security technologies, privacy and development methodologies. Bachelor’s degree in computer science, management information systems, or related field preferred. Candidate must have security architecture knowledge like TOGAF and MITA. Good analytical and creative problem solving skills, and relies on experience and judgment to plan and accomplish goals, independently performs a variety of complicated tasks, with a wide degree of creativity and latitude is expected.

Skills:
SkillRequired / DesiredAmountof Experience
Experience implementing AWS Security configurationsRequired3Years
Experience performing Security Operations Center capabilities such as Logging and Monitoring, Incident Handling, Disaster Recovery.Required3Years
Experience providing security compliance requirements for Applications/ Systems in Cloud Environments (AWS, Azure, Google cloud)Required3Years
Must be able to review & assess MES systems throughout all phases of their life cycle in an effort to identify Privacy, Security ArchitectureRequired5Years
Risk Management - must be able to Identify gaps through risk management, and assist in the development of mitigation strategies.Required5Years
Experience updating privacy and security policies based on gaps found through an assessment process.Required5Years
Experience documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate personnelRequired5Years
Must be able to serve as a knowledge base for organizations as it relates to CMS and state compliance requirements & mitigation strategies.Required3Years
Experience Performing risk assessments based on NIST 800-53 Rev 4. HIPAA, SSA and IRS Pub 1075.Required5Years
Experience with network mapping and vulnerability scanning tools such as NESSUS and NMAP.Required5Years
Experience in reviewing RFP, RFQ, MOU and MOA for privacy and security architecture requiremetnsRequired5Years
Experience in reviewing the Business Continuity plans, Disaster Recovery Testing plans based on Federal and State requirementsRequired3Years
MITA (Medicaid Information Technology Architecture) ExperienceHighly desired3Years
Experience performing DevSecOps Engineering capabilitiesDesired3Years

Required profile

Experience

Level of experience: Senior (5-10 years)
Industry :
Information Technology & Services
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

Social Security Disability InsuranceCyber Security Policy DevelopmentRecovery TestingRF EnvironmentsNetwork MappingNIST 800-53Vulnerability AssessmentsNmapVulnerability ScanningProject CollaborationAWS Identity And Access Management (IAM)Security ManagementRisk ManagementInformation PolicyIncident ManagementLog MonitoringCloud Platform SystemTax ComplianceDisaster RecoveryMedicaid Information Technology Architecture (MITA)DevSecOpsBusiness Continuity PlanningHealth Insurance Portability And Accountability Act (HIPAA) Compliance

Other Skills

  • Security Policies
  • Leadership Development
  • Creative Problem Solving
  • Teamwork
  • Time Management
  • Verbal Communication Skills
  • Open Mindset
  • Analytical Skills
Are you interested?

IT Security Manager Related jobs

See more IT Security Manager jobs
Sign in or sign up with Google or LinkedIn