Jobs Details - Apply Now

Responsibilities:
- Conduct security assessments and audits to identify vulnerabilities and provide recommendations for remediation of DHCF assets. - Design, implement, and manage security infrastructure and tools, including firewalls, intrusion detection systems, vulnerability management systems, antivirus systems. - Collaborate with IT teams to ensure security best practices are integrated into IT projects and operations for divisions providing services internally and externally. - Develop and maintain security policies, procedures, and standards. - Monitor security systems and respond to security incidents in a timely manner. - Provide security awareness training to employees and stakeholders. - Stay up to date with the latest security trends, threats, and technologies. - Should have experience with Center for Medicaid Services (CMS), Internal Revenue Services (IRS) and Social Security Administration (SSA) Audits and Remediation. Qualifications:
- Minimum of 15 years of experience working in the field of cybersecurity. - Knowledge of federal and industry-specific regulations and compliance requirements related to cybersecurity (e.g., FISMA, HIPAA, GDPR). - Experience in preparing for and participating in security audits and assessments. - Expertise in network security, including firewalls, intrusion detection/prevention systems, and VPNs. - Proven experience with security assessment tools and methodologies. - Proficiency in security technologies such as SIEM (Security Information and Event Management) systems and endpoint protection solutions - Experience with security monitoring tools, log analysis, and incident response procedures in Azure environments. - Strong leadership skills with the ability to motivate and manage a team effectively. - Excellent communication and interpersonal skills to work collaboratively with diverse teams and stakeholders. - Demonstrated ability to develop and implement security policies, procedures, and standards. - Experience in incident response, including conducting investigations and managing security incidents. - Strong understanding of cloud security principles and best practices. - Strong knowledge of network security, encryption, authentication methods, and security protocols. - Excellent problem-solving skills and attention to detail. - Strong communication skills and ability to work collaboratively with cross-functional teams. Deliverables: - Comprehensive cybersecurity strategy document outlining short-term and long-term goals. - Updated security policies and procedures manual. - Regular compliance reports and documentation of security measures taken. - Security assessment reports detailing identified vulnerabilities and recommended remediation strategies. - Documentation of implemented security measures and configurations. - Incident reports for security incidents, including analysis, containment, eradication, recovery, and lessons learned. - Create a detailed implementation plan outlining the steps and timeline for deploying security solutions, configuring firewalls, intrusion detection systems, and other security tools. - Integrate and configure security tools, such as SIEM (Security Information and Event Management) systems, intrusion detection systems, and vulnerability scanners, for continuous monitoring and threat detection. - Develop a comprehensive incident response plan outlining procedures for identifying, containing, eradicating, recovering from, and documenting security incidents. Conduct tabletop exercises to validate the plan. - Configure network security devices, including firewalls, routers, and switches, to enforce access controls, segmentation, and threat detection. - Complete Remediation of all findings from audit reports and communicate with the federal agencies that conduct audit. Responsibilities:
- Formulates and defines systems scope and objectives based on both user needs and a thorough understanding of business systems and industry requirements. - Devises or modifies procedures to solve complex problems considering computer equipment capacity and limitations, operation time, and form of desired results. - Includes analysis of business and user needs, documentation of requirements, and translation into proper system requirements specifications. - Provides consultation on complex projects and is considered to be the top-level contributor/specialist of most phases of systems analysis, while considering the business implications of the application of technology to the current and future business environment. Minimum Education/Certification Requirements :
- Bachelor’s degree in IT or related field or equivalent experience; or a current Project Management Professional (PMP) Certification