Mention which position are you applying position 1 or position 2 with your word resume to imran@sagarsoft.com
Only H1-GC-GCead's-H4 ead's -USC
Position 1
Job Role: System Engineer(Security Policy)
Duration: 1+ Years
Location: Baltimore, MD ( Hybrid) day 1 onsite
Security, Computer Systems Specialist
Develop and implement cloud security controls, cloud-based processes and tools, and cloud security task automation.
Perform security assessments, working closely with DevOps and Developer teams on identifying security and privacy issues in AWS or Azure and finding solutions to provide required functionality securely.
Continuously monitor cloud security operations, responding to security issues and escalating as necessary.
Conduct security impact analysis of controls on proposed system changes.
Conduct cloud security assessments and Penetration testing.
Perform Incident Response and Forensics evaluation using security information and event management (SIEM) tools.
Ensure that the MHBE system security requirements are addressed during all phases of the system development life cycle.
Review and update systems security documentation and artifacts such as Systems Security Plan, Information Security Risk Assessment, Privacy Impact Assessment, Systems Security Report, Correction Action Plan, Plan of Action & Milestones (POA&M).
Create and track POA&M requirements for resolving security findings.
Administer cloud-based and physical firewalls.
Adhere to all security, change control, and MHBE Project Management Office (PMO) policies, processes, and methodologies.
Note: The candidate must have the flexibility to work overtime, as needed, to include weekends, holidays, and off-hours.
-------------------------------------------------------------------------------------------------------------------------------
Position 2.
Computer Systems Specialist Security @ Baltimore, MD ( Hybrid) day 1 onsite
Job Description
A minimum of six (6) years of experience analyzing and defining security requirements for large and mission-critical IT systems.
A minimum of two (5) years performing day-to-day security operations functions, including administration, troubleshooting, and resolution of various security components.
A minimum of three (5) years of hands-on experience in performing cloud security functions.
A minimum of three (5) years of experience in defining computer security requirements for high-level applications and evaluating approved security product capabilities.
Demonstrated production experience using AWS Cloud supporting security operations.
Experience in performing Security Incident Response and Forensics evaluation with SIEM tools.
Working knowledge of AWS security features such as Security Groups, Network Access Control List, Firewall, WAF, Guard Duty, Macie, CloudTrail, CloudWatch, Control Tower, etc.
Experience with assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
Preferred Qualifications
(additional Experience/Knowledge/Skills listed below are preferred by Client)
A minimum of five (5) years of experience implementing Security Controls and Governance for public-facing complex IT systems.
A minimum of five (5) years of experience with the assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
A minimum of five (5) years of experience with conducting Incident Response testing to evaluate processes for detection, response, and reporting of security incidents
A minimum of five (5) years of experience assisting organizations in meeting NIST SP 800-37, NIST 800-53, IRS Publication 1075, and MARS-e 2.0 requirements.
A minimum of three (3) years of experience in leading vulnerability management and penetration testing efforts.
A minimum of three (3) years of experience in conducting security risk management functions for a large enterprise.
A minimum of three (3) years of experience in conducting business continuity and disaster recovery functions for an organization.
A minimum of three (3) years of experience with Data Security practices on encryption and masking.
A minimum of three (3) years of experience with Data Loss Prevention tools and technologies.
Hands-on experience designing, developing, and administering security policies for health insurance marketplaces and/or complex health and human services systems.
Experience in configuring and reviewing ASA and/or Fortinet firewalls.
Possess one or more security certifications such as CISSP, ISO, CSA STAR Cloud Security Advisor, CCSE, QCS, CNA, and VCP.
Experience working with the Project Management Office (PMO) processes, policies, and procedures.
Note: The candidate must have the flexibility to work overtime, as needed, to include weekends, holidays, and off-hours
Job Types: Full-time, Contract
Salary: $50.00 - $80.00 per hour
Benefits:
Experience level:
Schedule:
Ability to commute/relocate:
Experience:
Work Location: One location
Sagarsoft hopes to take all of the hard work out of information technology. The company provides information technology (IT) services such as software development, data warehousing, and enterprise application integration. Additional offerings incl...
6 jobsSubscribe to Rise newsletter