Home

NCDHHS- PSO IT Security Specialist st at Remote, Remote, USA
Email: [email protected]
From:

Dheeraj,

webgeosolutions

[email protected]

Reply to:   [email protected]

Greetings from Web Geo Solutions, LLC.

We have an exciting new job opportunity with our direct client, matching your skills. Please review the job description and respond with all the requested details if you are interested.

Job Details

JOB ID: 

NCDHHS- PSO IT Security Specialist st (723584)

Client: NC -

Last day to apply: 1/15

Initial Term: 12 Months+

Tentative start date:  ASAP

Interview mode
:  Webcam/In-Person

Work location:   Remote

Job Description:

NC DHHS - Privacy and Security Office (PSO) requiring services of an IT Security Compliance Specialist  to assist and assess the NC FAST Application and Infrastructure Modernization(AIM) CMS, USDA and ACF requirements for the project.  In addition this resource must also review the RFP, MOU and MOA for privacy, security, Business Continuity Planning, Disaster Recovery and audit requirements.   This resource must identify the risks and assist in the development of mitigation strategies, and to establish the target security/infrastructure architecture.

Duties include, are not limited to:

*           The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.

             This candidate will be expected to continuously assess the development process and suggest improvements.

             Supports the ISSO with the management of system security plans, ensure the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification and provide support to achieve all activities associated with the Assessment and Authorization (A&A) process.

             Provides support and security compliance to meet the security standards for Applications and systems in Cloud environments (AWS or Azure or Google etc.).

             Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.

             Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies; The program participates in the IT Continuous Monitoring Program.

             Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.

             Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.

             Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.

             Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.

             Monitor infrastructure assets and services, evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.

             Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informing Senior Leadership of security measures in place.

             Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.

             It is imperative that the candidate possess and apply a comprehensive system security knowledge across key tasks and high impact assignments.

             5+ years of related work experience

             5 years experience providing security compliance requirements for Applications in Cloud environments (AWS or Azure or Google etc.)

             5 years experience updating or maintaining SSP/SSPP documents.

             5 years experience participating in Assessment & Authorization (A&A/ATO)

             5 years experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53

             5 years experience providing security engineering review and recommendations.

             5 years experience working with large teams in an Agile environment.

             5 years ISSO experience

             Experience coordinating and working under an ATO.

             Experience assessing system modifications such as major and minor releases and potential security impacts.

             Experience providing recommendations for improvement to amend vulnerabilities.

             Experience assisting Program Managers and Senior Leadership developing Correction Action Plans (CAPs) when responding to IT and Financial audits.

The ideal candidate will have experience working with current and emerging information security technologies, privacy and development methodologies. Bachelors degree in computer science, management information systems, or related field preferred.  Candidate must have security architecture  knowledge like TOGAF and MITA.  Good analytical and creative problem solving skills, and relies on experience and judgment to plan and accomplish goals, independently performs a variety of complicated tasks, with a wide degree of creativity and latitude is expected.

If you are interested, please reply with below details for further evaluation
Please send all the requested below information for consideration
Contact details (and employer details if C2C)

Your full legal name (Must match with state issued ID or passport)

Phone number

Personal email id (this same id should be used to send E-RTR after submission)

Desired hourly rate (above max advertised rate is not considered):

W2: $

C2C: $

Work Status (H1B, EAD, GC, US Citizen), please attach a copy of work authorization:

If H1B, who holds the visa (contact details, please include name, phone number and email)

If selected, how soon would you be available to start

Have you ever worked for this client If so, please provide 
team name, project name, reason for leaving and when the engagement ended.

Upon selected, employment is subjected to 
7-year national criminal background check.

Will you be able to attend In-Person interview (Yes or No)      

Your current address

Are you available to be on-site at clients location for the duration of the project

Note: Payment for all approved hours will be paid at the straight hourly rate regardless of the total hours worked (regular and overtime hours) by the engaged resource. Do you accept this requirement

Upon selection, candidate must be able to provide three (3) references from prior engagements before a final decision is made. Do you accept this requirement

LinkedIn profile URL

Skill Matrix

NCDHHS- PSO IT Security Specialist st (723584)

Skill

Required / Desired

Amount in years

Your actual Experience in years (Please fill all of them)

Risk Management - must be able to Identify gaps through risk management, and assist in the development of mitigation strategies.

Required

7

Experience updating privacy and security policies based on gaps found through an assessment process.

Required

7

Experience documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate personnel

Required

7

Must be able to review & assess MES systems throughout all phases of their life cycle in an effort to identify Privacy, Security Architecture

Required

7

Must be able to serve as a knowledge base for organizations as it relates to CMS and state compliance requirements & mitigation strategies.

Required

7

Experience Performing risk assessments based on NIST 800-53 Rev 4. HIPAA,SSA and IRS Pub 1075.

Required

7

Experience with network mapping and vulnerability scanning tools such as NESSUS and NMAP.

Required

7

Experience in reviewing RFP, RFQ, MOU and MOA for privacy and security architecture requiremetns

Required

7

Experience in reviewing the Business Continuity plans, Disaster Recovery Testing plans based on Federal and State requirements

Required

7

Experience providing security compliance requirements for Applications/ Systems in Cloud Environments (AWS, Azure, Google cloud)

Required

5

MITA (Medicaid Information Technology Architecture) Experience

Highly desired

3

Your resume in MS Word format, copy of any relevant certifications & copy of work authorization (H1B/GC/EAD).

Please check the other positions that are currently open with several NC State agencies http://www.indeed.com/cmp/Web-Geo-Solutions,-LLC/jobs

Keywords: information technology green card wtwo microsoft Idaho North Carolina
[email protected]
View all
Thu Jan 11 21:08:00 UTC 2024

To remove this job post send "job_kill 1006191" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.


Your reply to [email protected] -
To       

Subject   
Message -

Your email id:

Captcha Image:
Captcha Code:


Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 1

Location: ,