Systems Security Specialist; Senior

Location-Baltimore, Maryland

• Develop and implement cloud security controls, cloud-based processes, tools, and security task automation.
• Perform security assessments in AWS and/or Azure, working closely with Dev Ops and development teams to identify and remediate security and privacy risks.
• Continuously monitor the Health Benefit Exchange (HBX) and ancillary systems, responding to security incidents and escalating issues as required.
• Conduct security impact analysis for proposed system changes.
• Perform cloud security assessments and penetration testing.
• Execute Security Incident Response and forensic evaluations using SIEM tools.
• Ensure MHBE system security requirements are addressed throughout all phases of the SDLC.
• Review, update, and maintain system security documentation, including:
  • System Security Plan (SSP)
  • Information Security Risk Assessment
  • Privacy Impact Assessment (PIA)
  • System Security Report
  • Corrective Action Plan
  • Plan of Action & Milestones (POA&M)
• Create, track, and manage POA&M items to resolve security findings.
• Administer cloud-based and physical firewalls.
• Deploy, administer, and monitor Identity and Access Management (IAM) solutions across multiple operating systems.
• Design and enhance IAM solutions using Forge Rock and SailPoint.
• Maintain and support IAM products, applications, and security technologies.
• Implement IAM changes to enhance enterprise security and ensure secure access for employees, contractors, consumers, and stakeholders.
• Provide operational support for additional security technologies.
• Perform account and access management activities using IAM and related security tools.
• Adhere to all MHBE security, change control, and Project Management Office (PMO) policies and procedures.
• Flexibility to work overtime, including weekends, holidays, and off-hours, as required.

• Minimum 8 years of experience analyzing, defining, deploying, monitoring, and administering security controls for large, mission-critical IT systems.
• Minimum 5 years performing day-to-day security operations, including administration, troubleshooting, and issue resolution.
• Minimum 4 years of hands-on experience in cloud security functions.
• Minimum 4 years defining computer security requirements and evaluating security product capabilities.
• Minimum 4 years of production experience supporting AWS Cloud security operations.
• Minimum 4 years administering security for Windows and Linux operating systems.
• Experience with Security Incident Response and forensic analysis using SIEM tools.
• Working knowledge of AWS security services, including:
  • Security Groups, NACLs, Firewalls, WAF
  • Guard Duty, Macie
  • Cloud Trail, Cloud Watch
  • Control Tower
• Experience assessing information systems and recommending mitigation strategies for threats, risks, and vulnerabilities.
• Experience performing scheduled maintenance activities such as patching, performance tuning, and backups.
• Experience with user provisioning and de-provisioning.
• Experience monitoring security infrastructure for operational effectiveness.

• 5+ years implementing and managing security controls and governance for public-facing, complex IT systems.
• 5+ years defining security requirements for high-level applications and designing solutions for multi-level security challenges.
• 5+ years providing operational support for Forge Rock and SailPoint IAM solutions.
• 5+ years assessing information systems to mitigate threats, risks, and vulnerabilities.
• 5+ years conducting Incident Response testing for detection, response, and reporting effectiveness.
• 3+ years designing and administering security policies for health insurance marketplaces or health and human services systems.
• Experience configuring Forge Rock for Single Sign-On (SSO) and password synchronization across applications.
• Experience administering SailPoint, including:
  • Organizational hierarchy design
  • Provisioning and de-provisioning policies
• Hands-on experience implementing:
  • Identity policies, password policies, ACLs
  • Reconciliation, workflows, lifecycle management
  • Remote resource configuration
• Experience with ACL configuration, group management, and configuration management.
• Strong troubleshooting skills with the ability to provide workarounds and permanent resolutions.
• Experience developing IT security roadmaps and execution plans.
• Strong command-line skills in Linux and Windows environments.
• Experience integrating IAM solutions with Active Directory, LDAP, and databases.
• Experience with Java, JavaScript, and shell scripting.
• Experience supporting compliance with:
  • NIST SP 800-37, NIST 800-53
  • IRS Publication 1075
  • MARS-E 2.0
• Experience conducting vulnerability management and penetration testing.
• Experience configuring and managing ASA and/or Fortinet firewalls.
• Security certifications preferred (CISSP, ISO, CSA STAR, CCSE, QCS, CNA, VCP, or equivalent).
• Experience working within PMO governance, processes, and methodologies.