Systems Security Specialist Job at Creative Information Technology, Inc., Baltimore, MD

enJoTFZDRzN1SHYwZkRHZ05OK09TcW0xSnc9PQ==
  • Creative Information Technology, Inc.
  • Baltimore, MD

Job Description

About us:

Creative Information Technology Inc (CITI) is an esteemed IT enterprise renowned for its exceptional customer service and innovation. We serve both government and commercial sectors, offering a range of solutions such as Healthcare IT, Human Services, Identity Credentialing, Cloud Computing, and Big Data Analytics. With clients in the US and abroad, we hold key contract vehicles including GSA IT Schedule 70, NIH CIO-SP3, GSA Alliant, and DHS-Eagle II.

Join us in driving growth and seizing new business opportunities!

Job Description:

Key Responsibilities:

  • Cloud Security Architecture & Controls: Develop and implement robust cloud security controls, processes, and automation. Conduct security assessments and impact analysis for proposed system changes in AWS/Azure, collaborating closely with DevOps and development teams.
  • Identity & Access Management (IAM): Design, deploy, administer, monitor, and provide operational support for IAM products (e.g., ForgeRock, SailPoint) across various operating systems, ensuring secure access for all stakeholders.
  • Security Operations & Incident Response: Continuously monitor cloud and ancillary systems, respond to security incidents, perform forensics evaluation using SIEM tools, and escalate as necessary.
  • Security Assessment & Compliance: Conduct cloud security assessments, penetration testing, and ensure MHBE system security requirements are addressed throughout the SDLC. Review and update security documentation (SSP, RAs, PIAs, POA&Ms).
  • Firewall & General Security Management: Administer cloud-based and physical firewalls, and provide operational support for other security technologies.
  • Policy Adherence: Strictly adhere to all security, change control, and MHBE PMO policies, processes, and methodologies.

Required Skills:

  • A minimum of two (2) years of experience analyzing, defining, deploying, monitoring, and administering security requirements and controls for large and mission-critical IT systems.
  • A minimum of two (2) years performing day-to-day security operations functions, including administration, troubleshooting, and resolution of various security components.
  • A minimum of two (2) years of hands-on experience in performing cloud security functions.
  • A minimum of two (2) years of experience in defining computer security requirements for high-level applications and evaluating approved security product capabilities.
  • A minimum of two (2) years of demonstrated production experience using AWS Cloud supporting security operations.
  • A minimum of two (2) years of experience with administering security for Windows and Linux operating systems.
  • Experience in performing Security Incident Response and Forensics evaluation with SIEM tools.
  • Experience with AWS security features such as Security Groups, Network Access Control List, Firewall, WAF, Guard Duty, Macie, CloudTrail, CloudWatch, Control Tower, etc.
  • Experience with assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
  • Demonstrated ability to perform scheduled maintenance activities such as patching, performance tuning, and backups.
  • Demonstrated ability to perform user provisioning and de-provisioning activities.
  • Experience in monitoring the security infrastructure for operational effectiveness

Preferred Skills:

  • A minimum of four (4) years of experience implementing, administering, and monitoring Security Controls and Governance for public-facing complex IT systems.
  • A minimum of four (4) years of specialized experience in defining computer security requirements for high-level applications, evaluating approved security product capabilities, and developing solutions to multilevel security problems.
  • A minimum of four (4) years of hands-on experience providing operational support for ForgeRock and Sailpoint IAM products.
  • A minimum of four (4) years of experience with the assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
  • A minimum of four (4) years of experience conducting Incident Response testing to evaluate processes for detection, response, and reporting of security incidents.
  • Experience configuring ForgeRock to enable single sign-on with different applications and implementing password sync across all internal applications.
  • Experience with configuration and administration of SailPoint and performing tasks such as designing an organizational tree structure and creating provisioning and de-provisioning policies.
  • Experience implementing ID policies, password policies, access control lists (ACL), reconciliation, service definition, the configuration of remote resources, workflows, password synchronization, reconciliation schedules, and life cycle management.
  • Experience in providing detailed configuration and administration for programs such as ACL configuration, Group Management, and configuration management.
  • Hands-on experience with troubleshooting, investigating operational problems, and providing workarounds, resolutions, and remediations.
  • Experience developing IT Security roadmaps and execution plans.
  • Demonstrated technical knowledge of command line utilities running on various platforms, including Linux and MS Windows.
  • Experience with implementation of integration solutions between IAM system and user account repositories such as Active Directory, LDAP, and Databases.
  • Experience with Java, JavaScript, and shell scripts.
  • Experience assisting organizations meeting NIST SP 800-37, NIST 800-53, IRS Publication 1075, and MARS-e 2.0 requirements.
  • Experience with conducting vulnerability management and penetration testing efforts.
  • Experience in configuring and reviewing ASA and/or Fortinet firewalls.
  • Possess one or more security certifications such as CISSP, ISO, CSA STAR Cloud Security Advisor, CCSE, QCS, CNA, VCP, or equivalent preferred.
  • Experience working with the Project Management Office (PMO) processes, policies, and procedures.

How to Apply:

To apply for the Systems Security Specialist, please submit your resume to [email protected].

Applications will be reviewed on a rolling basis until the position is filled. We look forward to reviewing your application.

Job Tags

Contract work, Remote job,

Similar Jobs

Medical Services of America

Physical Therapist Assistant Home Health Job at Medical Services of America

 ...Now Hiring: Full-Time Physical Therapist Assistant Home Health Territory: Hudson, Granite Falls, Lenoir, Collettsville (Caldwell) NC. Medi Home Health Agency A Division of Medical Services of America, Inc. Medi Home Health Agency is looking for a Full-Time... 

Nicholson Heating & Air

Hvac Service Technician Job at Nicholson Heating & Air

 ...problem-solver with a can-do attitude and a proven record of experience in the field, you might be perfect for our HVAC service technician position. Our growing HVAC company needs a service tech to meet clients at their home or place of business to troubleshoot, diagnose... 

BW Secure

Project Manager - Security Technologies Job at BW Secure

 ...Founded in 1979, BW Secure has built a reputation for unwavering integrity, technical precision, and operational excellence. We are...  ...Position Overview BW Secure is seeking an experienced Project Manager to lead the planning, coordination, and execution of security technologies... 

Ocean Casino Resort

Valet Attendant- Parking Operations- Seasonal Job at Ocean Casino Resort

 ...About the Role The Valet Attendant is responsible for parking and retrieving customer vehicles in a courteous, safe and efficient manner. Position Responsibilities Maintains a positive and professional image and is highly motivated to safely provide... 

Compunnel Inc.

Equipment Maintenance Technician Job at Compunnel Inc.

 ...skills of two or more maintenance or craft occupations to keep machines, mechanical equipment, or the structure of an establishment in repair. Typically has a high school diploma or GED. The technical skills include the knowledge of machines and tools. Duties :...