IT Security Specialist - Remote | WFH Opportunity

Job Overview

We are in search of a proficient IT Security Specialist to play a pivotal role in supporting and evaluating security requirements for a significant application and infrastructure modernization initiative. This position entails a thorough review of essential documents, identification of potential security vulnerabilities, and collaboration in the formulation of effective mitigation strategies to ensure adherence to security and privacy protocols. The ideal candidate will possess a robust foundation in cloud security, risk management, and system security assessments.

Key Responsibilities

• Design, implement, upgrade, and supervise security measures to safeguard computer networks and information.
• Conduct ongoing evaluations of development processes and propose enhancements to bolster security.
• Assist the Information System Security Officer (ISSO) in managing system security plans, ensuring systems secure and sustain authorization to operate (ATO), and support activities related to the Assessment and Authorization (A&A) process.
• Guarantee security compliance for applications and systems within various cloud environments (AWS, Azure, Google Cloud, etc.).
• Administer the security program for applications and systems, adhering to guidelines such as MARS-E, NIST, and HIPAA.
• Collaborate with Operations and Maintenance (O&M) and Infrastructure teams to ensure software remains current and compliant with information security policies.
• Partner with developers, engineers, and other team members to satisfy security requirements while minimizing project delays.
• Work alongside teams to deploy automated Disaster Recovery solutions, encompassing alerting, notifications, data backup, and recovery processes.
• Contribute to the development of security event logging and monitoring procedures.
• Conduct internal assessments of security controls to confirm compliance with regulations and technical standards.
• Track and oversee remediation efforts for audit findings through Plans of Actions and Milestones (POA&Ms) and Corrective Action Plans (CAPs).
• Ensure the implementation of appropriate security controls to protect sensitive data and infrastructure.
  
  

Required Qualifications

• A minimum of 5 years of experience in IT security or related domains.
• 5 years of experience in ensuring security compliance for cloud applications (AWS, Azure, Google Cloud).
• 5 years of experience in maintaining and updating system security plans (SSP/SSPP).
• 5 years of experience in supporting infrastructure assets and services, with a solid understanding of NIST 800-53.
• Proven experience in providing security engineering assessments and recommendations.
• Experience working in Agile environments with large, cross-functional teams.
• At least 5 years of experience as an ISSO and familiarity with ATO processes.
• Strong grasp of security architecture, including familiarity with TOGAF and MITA.
• Experience in risk management, vulnerability assessments, and security compliance documentation.
• Experience in reviewing security-related documentation such as Business Continuity Plans and Disaster Recovery Testing Plans.
  
  

Career Growth Opportunities

This role presents an exciting opportunity to leverage your security expertise in a dynamic, collaborative environment. You will have avenues for continuous learning and personal development in the realm of IT security, enabling you to advance your career while tackling intricate security challenges.

Company Culture And Values

Our organization promotes a work environment that values teamwork, innovation, and a proactive approach to tackling security challenges. We encourage team members to share ideas and collaborate to enhance security measures across all projects.

Employment Type: Full-Time