Remote IT Security Specialist | WFH

Job Overview

We are looking for a highly qualified IT Security Specialist to join our team in a remote capacity. This pivotal role focuses on supporting and evaluating security requirements for a significant application and infrastructure modernization initiative. You will play a critical part in reviewing essential documentation, pinpointing potential security vulnerabilities, and aiding in the formulation of robust mitigation strategies that align with security and privacy standards.

Key Responsibilities

• Design, implement, upgrade, and monitor security protocols to safeguard computer networks and sensitive information.
• Consistently assess development workflows and propose enhancements to the security framework.
• Collaborate with the Information System Security Officer (ISSO) in managing system security plans, ensuring systems acquire and sustain authorization to operate (ATO).
• Guarantee security compliance for applications and systems operating within cloud environments including AWS, Azure, and Google Cloud.
• Direct the security program for various applications and systems, adhering to regulatory guidelines such as NIST, HIPAA, and MARS-E.
• Partner with Operations and Maintenance (O&M) and Infrastructure teams to ensure software compliance with information security policies.
• Work alongside developers and engineers to fulfill security requirements while minimizing disruptions to project timelines.
• Assist in the automation of Disaster Recovery solutions, including alert notifications, data backup, and recovery processes.
• Contribute to the development of security event logging and monitoring practices.
• Conduct internal evaluations of security controls to verify compliance with established regulations and technical standards.
• Monitor and track remediation efforts for audit discrepancies through Plans of Actions and Milestones (POA&Ms) and Corrective Action Plans (CAPs).
• Ensure the implementation of appropriate security controls to protect sensitive data and infrastructure.
  
  

Required Skills

• Comprehensive understanding of security operations, including logging, monitoring, and incident management.
• Proficient in risk management and vulnerability assessment in accordance with NIST 800-53 and HIPAA standards.
• Expertise in ensuring cloud environment security compliance across major platforms such as AWS, Azure, and Google Cloud.
• Ability to serve as a resource for compliance requirements pertaining to CMS and state regulations.
  
  

Qualifications

• A minimum of 5 years of experience in IT security or related fields.
• 5 years of experience ensuring security compliance for cloud applications.
• 5 years of experience in maintaining and updating System Security Plans (SSP/SSPP).
• Proven experience in providing security engineering reviews and recommendations.
• Familiarity with working in Agile settings and with large, cross-functional teams.
• In-depth understanding of security architecture principles.
• Experience in conducting risk management, vulnerability assessments, and security compliance documentation.
  
  

Career Growth Opportunities

This position offers the prospect of professional advancement, with opportunities to work in Agile environments and collaborate across diverse teams. You will enhance your expertise in security engineering reviews, contributing to your career trajectory in the IT security field.

Company Culture And Values

Join a dynamic organization that prioritizes innovation, collaboration, and continuous improvement. We foster a culture that values diversity and inclusion, encouraging our employees to bring their unique perspectives to the table.

Networking And Professional Opportunities

As part of our team, you will have valuable opportunities to expand your professional network and collaborate with industry experts, enhancing your skill set and career prospects.

Employment Type: Full-Time