ID
#6282861
Job type
Contract
Salary
Depends on Experience
Source
Scadea Solutions Inc
Date
2020-12-01
Deadline
2021-01-30

Security Manager

Maryland, Baltimore, 21201

Contract

Vacancy expired!

Position: Security ManagerLocation: Remote / Windsor Mill, MDDuration: 12+ Months Job Description: Responsible for maintaining computer and information security incident, damage and threat assessment programs. Duties include investigating computer and information security incidents to determine extent of compromise to information and automated information systems, providing computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments, researching and maintaining proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption. In addition, duties may include designing, developing or recommending integrated system solutions ensuring proprietary/confidential data and systems are protected, participating with the client in the strategic design process to translate security and business requirements into technical designs, and configuring and validating secure systems, testing security products/systems to detect computer and information security weakness. Candidate responsibility:

The security manager is responsible for the security authorization package that contains three core documents: the system security plan, security assessment report, and plan of action and milestones—and any additional supporting information required by the HHS authorizing official.
The candidate will be responsible for the security design, development, and testing of java based application architectures in a fast paced development environment.
Responsible for developing and managing Information Systems cyber security, including disaster recovery, database protection and software development.
Manages IT security analysts to ensure that all applications are functional and secure.
Develops and delivers IT security standards, best practices, architecture and system to ensure information system security across the enterprise.
Implements procedures and methods for auditing and addressing non-compliance to information security standards.
Responsible for migrating non-compliant environments to compliant environments.
Establish end to end process flow and user acceptance criteria, collaborating with datacenter, business and technical teams, analyze data input and output conditions, analyze impacts to the system under discussion and also any dependent systems.
Work under general task direction of program manager.
Solicit feedback on his/her work for accuracy and completeness from senior team members.
Directly liaise with federal customers and advise on the security functions that are within the sphere of responsibility and scope.
Lead Security team meetings and report status and follow-up of action items that are assigned
Hold others accountable for deliverables that are due to them in order for them to meet their work deadlines and complete their assignments.

Basic Qualifications: Responsibility for security evaluations to ensure compliance with standards and relevance with industry security norms. Ensures that project/department milestones are met and adhering to approved security controls. Ensure that System Security Plans are updated, reviewed, and delivered to the customer. Responsible for maintaining the security assessment report (SAR) which includes security control assessment results, including any issues, weaknesses and deficiencies, and recommendations. Responsible for the Re-Authority to Operate (ATO) process with the HHS/ACF Authorizing Official. Responsible for analyzing security problems with existing systems or developing requirements for the new systems, and providing recommendations on overall system solution.Working knowledge of distributed application environments, preferably good understanding of the J2EE architecture. The web based application architectures include web applications, web services, micro services, and database operations. Experience should include familiarity with standard lifecycle processes and tools, and working within a team environment. Experience in the development of test cases and security test execution. Applicant must demonstrate the ability to work independently or under only general direction. Excellent oral and written communication skills, strong teamwork, ability to multi-task and a strong commitment to client service.Preferred Qualifications - Knowledge or experience with Software Engineering (IEEE) Capability Maturity Model (CMM) standards. Knowledge or experience with Full Development Life-Cycle (FDLC) methodologies. Familiar with SQL tools. Knowledge of IRS SCSEMS. Familiar with system environments that involve JAVA/J2EE Technologies, PostgreSQL, JavaScript, and Subversion. Ability to work with customer to prioritize security issues based on criticality. Working knowledge with federal customer is a plus. Familiar with Graylog, AppScan, SonarQube or other SIEM tools.Qualifications - Bachelor’s degree from an accredited college in a related discipline, or equivalent experience/combined education, with 8-12 years of professional experience, or 6-10 years of professional experience with a related Master’s degree. Generally has 4+ years of experience supervising or leading teams or projects.

Vacancy expired!

Report job