Systems Security Specialist (Senior)

Baltimore, MD - USA

Monthly Salary: Not Disclosed

Posted on: 2 hours ago

Vacancies: 1 Vacancy

Job Summary

Systems Security Specialist (Senior)

Location-BaltimoreMaryland

Duties & Responsibilities

Develop and implement cloud security controls cloud-based processes tools and security task automation.
Perform security assessments in AWS and/or Azure working closely with DevOps and development teams to identify and remediate security and privacy risks.
Continuously monitor the Health Benefit Exchange (HBX) and ancillary systems responding to security incidents and escalating issues as required.
Conduct security impact analysis for proposed system changes.
Perform cloud security assessments and penetration testing.
Execute Security Incident Response and forensic evaluations using SIEM tools.
Ensure MHBE system security requirements are addressed throughout all phases of the SDLC.
Review update and maintain system security documentation including:
- System Security Plan (SSP)
- Information Security Risk Assessment
- Privacy Impact Assessment (PIA)
- System Security Report
- Corrective Action Plan
- Plan of Action & Milestones (POA&M)
Create track and manage POA&M items to resolve security findings.
Administer cloud-based and physical firewalls.
Deploy administer and monitor Identity and Access Management (IAM) solutions across multiple operating systems.
Design and enhance IAM solutions using ForgeRock and SailPoint.
Maintain and support IAM products applications and security technologies.
Implement IAM changes to enhance enterprise security and ensure secure access for employees contractors consumers and stakeholders.
Provide operational support for additional security technologies.
Perform account and access management activities using IAM and related security tools.
Adhere to all MHBE security change control and Project Management Office (PMO) policies and procedures.
Flexibility to work overtime including weekends holidays and off-hours as required.

Minimum Qualifications

Minimum 8 years of experience analyzing defining deploying monitoring and administering security controls for large mission-critical IT systems.
Minimum 5 years performing day-to-day security operations including administration troubleshooting and issue resolution.
Minimum 4 years of hands-on experience in cloud security functions.
Minimum 4 years defining computer security requirements and evaluating security product capabilities.
Minimum 4 years of production experience supporting AWS Cloud security operations.
Minimum 4 years administering security for Windows and Linux operating systems.
Experience with Security Incident Response and forensic analysis using SIEM tools.
Working knowledge of AWS security services including:
- Security Groups NACLs Firewalls WAF
- GuardDuty Macie
- CloudTrail CloudWatch
- Control Tower
Experience assessing information systems and recommending mitigation strategies for threats risks and vulnerabilities.
Experience performing scheduled maintenance activities such as patching performance tuning and backups.
Experience with user provisioning and de-provisioning.
Experience monitoring security infrastructure for operational effectiveness.

Preferred Qualifications

5 years implementing and managing security controls and governance for public-facing complex IT systems.
5 years defining security requirements for high-level applications and designing solutions for multi-level security challenges.
5 years providing operational support for ForgeRock and SailPoint IAM solutions.
5 years assessing information systems to mitigate threats risks and vulnerabilities.
5 years conducting Incident Response testing for detection response and reporting effectiveness.
3 years designing and administering security policies for health insurance marketplaces or health and human services systems.
Experience configuring ForgeRock for Single Sign-On (SSO) and password synchronization across applications.
Experience administering SailPoint including:
- Organizational hierarchy design
- Provisioning and de-provisioning policies
Hands-on experience implementing:
- Identity policies password policies ACLs
- Reconciliation workflows lifecycle management
- Remote resource configuration
Experience with ACL configuration group management and configuration management.
Strong troubleshooting skills with the ability to provide workarounds and permanent resolutions.
Experience developing IT security roadmaps and execution plans.
Strong command-line skills in Linux and Windows environments.
Experience integrating IAM solutions with Active Directory LDAP and databases.
Experience with Java JavaScript and shell scripting.
Experience supporting compliance with:
- NIST SP 800-37 NIST 800-53
- IRS Publication 1075
- MARS-E 2.0
Experience conducting vulnerability management and penetration testing.
Experience configuring and managing ASA and/or Fortinet firewalls.
Security certifications preferred (CISSP ISO CSA STAR CCSE QCS CNA VCP or equivalent).
Experience working within PMO governance processes and methodologies.

Systems Security Specialist (Senior) Location-BaltimoreMaryland Duties & Responsibilities Develop and implement cloud security controls cloud-based processes tools and security task automation. Perform security assessments in AWS and/or Azure working closely with DevOps and development teams to ...

Systems Security Specialist (Senior)

Location-BaltimoreMaryland

Duties & Responsibilities

Develop and implement cloud security controls cloud-based processes tools and security task automation.
Perform security assessments in AWS and/or Azure working closely with DevOps and development teams to identify and remediate security and privacy risks.
Continuously monitor the Health Benefit Exchange (HBX) and ancillary systems responding to security incidents and escalating issues as required.
Conduct security impact analysis for proposed system changes.
Perform cloud security assessments and penetration testing.
Execute Security Incident Response and forensic evaluations using SIEM tools.
Ensure MHBE system security requirements are addressed throughout all phases of the SDLC.
Review update and maintain system security documentation including:
- System Security Plan (SSP)
- Information Security Risk Assessment
- Privacy Impact Assessment (PIA)
- System Security Report
- Corrective Action Plan
- Plan of Action & Milestones (POA&M)
Create track and manage POA&M items to resolve security findings.
Administer cloud-based and physical firewalls.
Deploy administer and monitor Identity and Access Management (IAM) solutions across multiple operating systems.
Design and enhance IAM solutions using ForgeRock and SailPoint.
Maintain and support IAM products applications and security technologies.
Implement IAM changes to enhance enterprise security and ensure secure access for employees contractors consumers and stakeholders.
Provide operational support for additional security technologies.
Perform account and access management activities using IAM and related security tools.
Adhere to all MHBE security change control and Project Management Office (PMO) policies and procedures.
Flexibility to work overtime including weekends holidays and off-hours as required.

Minimum Qualifications

Minimum 8 years of experience analyzing defining deploying monitoring and administering security controls for large mission-critical IT systems.
Minimum 5 years performing day-to-day security operations including administration troubleshooting and issue resolution.
Minimum 4 years of hands-on experience in cloud security functions.
Minimum 4 years defining computer security requirements and evaluating security product capabilities.
Minimum 4 years of production experience supporting AWS Cloud security operations.
Minimum 4 years administering security for Windows and Linux operating systems.
Experience with Security Incident Response and forensic analysis using SIEM tools.
Working knowledge of AWS security services including:
- Security Groups NACLs Firewalls WAF
- GuardDuty Macie
- CloudTrail CloudWatch
- Control Tower
Experience assessing information systems and recommending mitigation strategies for threats risks and vulnerabilities.
Experience performing scheduled maintenance activities such as patching performance tuning and backups.
Experience with user provisioning and de-provisioning.
Experience monitoring security infrastructure for operational effectiveness.

Preferred Qualifications

5 years implementing and managing security controls and governance for public-facing complex IT systems.
5 years defining security requirements for high-level applications and designing solutions for multi-level security challenges.
5 years providing operational support for ForgeRock and SailPoint IAM solutions.
5 years assessing information systems to mitigate threats risks and vulnerabilities.
5 years conducting Incident Response testing for detection response and reporting effectiveness.
3 years designing and administering security policies for health insurance marketplaces or health and human services systems.
Experience configuring ForgeRock for Single Sign-On (SSO) and password synchronization across applications.
Experience administering SailPoint including:
- Organizational hierarchy design
- Provisioning and de-provisioning policies
Hands-on experience implementing:
- Identity policies password policies ACLs
- Reconciliation workflows lifecycle management
- Remote resource configuration
Experience with ACL configuration group management and configuration management.
Strong troubleshooting skills with the ability to provide workarounds and permanent resolutions.
Experience developing IT security roadmaps and execution plans.
Strong command-line skills in Linux and Windows environments.
Experience integrating IAM solutions with Active Directory LDAP and databases.
Experience with Java JavaScript and shell scripting.
Experience supporting compliance with:
- NIST SP 800-37 NIST 800-53
- IRS Publication 1075
- MARS-E 2.0
Experience conducting vulnerability management and penetration testing.
Experience configuring and managing ASA and/or Fortinet firewalls.
Security certifications preferred (CISSP ISO CSA STAR CCSE QCS CNA VCP or equivalent).
Experience working within PMO governance processes and methodologies.