| W2 - C2C Contract Remote Hiring || Sr. Information Security Engineer (INFOSEC Engineer) || Des Moines, Iowa (Remote) at Iowa, Louisiana, USA |
| Email: [email protected] |
| From: Panchdev Pathak, Parin Technologies LLC [email protected] Reply to: [email protected] Please look at the below open requirement with one of our Clients and let me know your availability as soon as possible . Additional Job Information: Job Title: ITSA2-INFOSEC Engineer Location: Des Moines, Iowa (Remote) Interview Type: Web Cam Interview Only Duration: 4+ Months Description: The Client is seeking a Sr. Information Security Engineer (INFOSEC Engineer). As a Sr. Information Security Engineer (INFOSEC Engineer), this candidate must be capable of independently working, to aid and support the HHS Security Team with maintaining the security posture of our organization's information system(s), and interconnected network(s). This role is a significant addition to assist the Security team in preventing unauthorized access and defend against data breaches. This candidate will assist the HHS Enterprise Security Lead with consistent review of the security posture of networks, infrastructure, and efforts to improve the security configurations within toolset and metrics across our complex systems. The incumbent will also work to develop security procedures and assist with our third-party vulnerability and risk assessments. The HHS INFOSEC engineer will also develop and maintain standard operating procedures (SOPs) and assist the Enterprise Security Lead with conditioning the environment to the security and compliance requirements of HHS and the eligibility system(s). This role will collaborate with the compliance and regulatory leads to meet Iowan State Government and Regulatory requirements I.e. (IRS, SSA, CMS). Desired Background: Possess a depth and breadth of Enterprise-wide security knowledge and experience across the information security domains, such as endpoint security, identity management, cloud security, mobile device management, vulnerability management, incident response, and threat intelligence. Hands-on experience investigating security events and incidents across complex and heterogeneous environments, preferably including Microsoft Defender and Crowdstrike. Responsibilities: The candidate will perform as a liaison, capable of initiating communication and resolutions with our third-party federal partners, as well as internal stakeholders. The candidate must be proficient with independently triaging incidents, reviewing SOC alerts, and providing guidance and collaboration alongside the HHS Enterprise Security Lead role, with the HHS internal and Department of Management IT (DOMDoIT) teams, to document resolved Security efforts. Detect and respond to agency-wide security incidents, coordinating cross-functional teams to provide real-time metrics as a resolution, in parallel with eradicate threats. Monitor and analyze emerging threats, vulnerabilities, and exploits. Aid in developing and implementing scalable preventative security measures (detection, monitoring, exploitation) Develop, execute, and track the performance of security measures to protect information and network infrastructure and Computer systems. Design computer security strategy and engineer comprehensive cybersecurity architecture. Perform additional duties delegate by the security lead to ensure the organization security posture remains above the acceptable risk tolerance for the agency stakeholders. Preferred Certifications: Security + Required* CISSP CeH CISA CISM Needed Soft Skills: Time management skills with the ability to operate under short deadlines. Self-starter with minimal management supervision Ability to work under pressure and manage fluctuating workloads. Work in a team setting Ability to gain consensus. Maintain confidentiality. Excellent written and verbal communication skills Required/Desired Skills Skill Required /Desired Amount of Experience Demonstrated experience integrating, deploying, and operating security information and event management (SIEM) systems and security orchestration, Required 0 automation, and response (SOAR) systems Required 6 Years Strong knowledge of security technologies such as full packet capture, SIEM, NGFW, IDPS Required 8 Years Demonstrated proficiency in MS Office suite Required 8 Years Experience writing in explanatory and procedural styles for multiple audiences Required 5 Years Demonstrated proficiency reading and interpreting complex federal and state laws, rules, regulations, and requirements including, (but not limited to) Required 0 HIPAA, IRS Publication 1075, CMS MARS-E 2.0, FedRAMP, NIST 800-53 Required 2 Years Experience effectively communicating technical and nontechnical concepts to a variety of audiences Required 5 Years Excellent written and verbal communication skills Required 5 Years Experience working in an environment that is compliant with complex federal and state laws, rules, regulations, and requirements such as,... Required 0 HIPAA, IRS Publication 1075, FedRAMP, NIST 800-53 Desired 2 Years Ability to follow and comply with existing processes and procedures, and propose updates Desired 5 Years Ability to work with minimal supervision, set priorities, and give attention to detail and quality Desired 5 Years Demonstrated strong organizational and time-management skills: multitasking, working individually and with a team Desired 5 Years Experience to analyze Vulnerability reports (Web apps, Network scans, Policy scan, SOC alerts)... Desired 0 and recommend a solution for the mitigation or remediation Desired 5 Years Skill Matrix SKILL YEARS USED LAST USED Demonstrated experience integrating, deploying, and operating security information and event management (SIEM) systems and security orchestration, automation, and response (SOAR) systems Strong knowledge of security technologies such as full packet capture, SIEM, NGFW, IDPS Demonstrated proficiency in MS Office suite Experience writing in explanatory and procedural styles for multiple audiences Demonstrated proficiency reading and interpreting complex federal and state laws, rules, regulations, and requirements including, (but not limited to) HIPAA, IRS Publication 1075, CMS MARS-E 2.0, FedRAMP, NIST 800-53 Experience effectively communicating technical and nontechnical concepts to a variety of audiences Excellent written and verbal communication skills Experience working in an environment that is compliant with complex federal and state laws, rules, regulations, and requirements such as,... HIPAA, IRS Publication 1075, FedRAMP, NIST 800-53 Ability to follow and comply with existing processes and procedures, and propose updates Ability to work with minimal supervision, set priorities, and give attention to detail and quality Demonstrated strong organizational and time-management skills: multitasking, working individually and with a team Experience to analyze Vulnerability reports (Web apps, Network scans, Policy scan, SOC alerts)... and recommend a solution for the mitigation or remediation Keywords: information technology microsoft |
| [email protected] View all |
| Tue Jan 09 20:17:00 UTC 2024 |