IT Security Specialist (REMOTE) @ Serigor Inc | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
IT Security Specialist (REMOTE) jobs in Raleigh, NC
161 applicants
company-logo

Serigor Inc · 16 hours ago

IT Security Specialist (REMOTE)

positionRaleigh, NC
timeContract
remoteRemote
senioritySenior Level
date5+ years exp
ftfMaximize your interview chances
ConsultingInformation Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Insider Connection @Serigor Inc

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.
This candidate will be expected to continuously assess the development process and suggest improvements.
Supports the ISSO with the management of system security plans, ensure the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification and provide support to achieve all activities associated with the Assessment and Authorization (A&A) process.
Provides support and security compliance to meet the security standards for Applications and systems in Cloud environments (AWS or Azure or Google etc.).
Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.
Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies; The program participates in the IT Continuous Monitoring Program.
Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.
Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.
Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.
Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.
Monitor infrastructure assets and services, evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.
Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informing Senior Leadership of security measures in place.
Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.
It is imperative that the candidate possess and apply a comprehensive system security knowledge across key tasks and high impact assignments.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Risk ManagementNIST 800-53Security ComplianceCloud EnvironmentsVulnerability AssessmentMITANessusNmapBusiness Continuity PlanningDisaster RecoveryPrivacy ArchitectureSecurity ArchitectureAgile EnvironmentCorrection Action PlansKnowledge Base for Compliance

Required

5+ years of related work experience
5 years’ experience providing security compliance requirements for Applications in Cloud environments (AWS or Azure or Google etc.)
5 years’ experience updating or maintaining SSP/SSPP documents.
5 years’ experience participating in Assessment & Authorization (A&A/ATO)
5 years’ experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53
5 years’ experience providing security engineering review and recommendations.
5 years’ experience working with large teams in an Agile environment.
5 years ISSO experience
Experience coordinating and working under an ATO.
Experience assessing system modifications such as major and minor releases and potential security impacts.
Experience providing recommendations for improvement to amend vulnerabilities.
Experience assisting Program Managers and Senior Leadership developing Correction Action Plans (CAPs) when responding to IT and Financial audits.
Risk Management - must be able to Identify gaps through risk management and assist in the development of mitigation strategies.-Required-7-Years
Experience updating privacy and security policies based on gaps found through an assessment process.-Required-7-Years
Experience documenting vulnerability assessment results in a accurate, clear, actionable, and available way to appropriate personnel-Required-7-Years
Must be able to review & assess MES systems throughout all phases of their life cycle in an effort to identify Privacy, Security Architecture-Required-7-Years
Must be able to serve as a knowledge base for organizations as it relates to CMS and state compliance requirements & mitigation strategies.-Required-7-Years
Experience Performing risk assessments based on NIST 800-53 Rev 4. HIPAA, SSA and IRS Pub 1075.-Required-7-Years
Experience with network mapping and vulnerability scanning tools such as NESSUS and NMAP.-Required-7-Years
Experience in reviewing RFP, RFQ, MOU and MOA for privacy and security architecture Requirements-Required-7-Years
Experience in reviewing the Business Continuity plans, Disaster Recovery Testing plans based on Federal and State requirements-Required-7-Years
Experience providing security compliance requirements for Applications/ Systems in Cloud Environments (AWS, Azure, Google cloud)-Required-5-Years

Preferred

Bachelor’s degree in computer science, management information systems, or related field preferred.
Candidate must have security architecture knowledge like TOGAF and MITA.
MITA (Medicaid Information Technology Architecture) Experience-Highly desired-3-Years

Company

Serigor Inc

twittertwitter
company-logo
Serigor provides IT Services and IT staffing to Government and Commercial enterprises of all sizes.
dateFounded in 2009
location
Baltimore, Maryland, USA
people-size51-200 employees
web-link
https://www.serigor.com/

H1B Sponsorship

Serigor Inc has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (5)
2022 (7)
2021 (4)
2020 (2)

Funding

Current Stage
Growth Stage
Company data provided by crunchbase
logo

Orion

Your AI Copilot