IAM/ Cloud Security Specialist (NO H1B, State or Federal client exp)
IT ENGAGEMENTS INC
Baltimore, MD, USA
6/14/2022
Technology
Full Time
Job Description
Job Description
Greetings from IT Engagements
Role: IAM/ Cloud Security Specialist (NO H1B)
Location: Baltimore, MD (Need Locals)
Minimum One State or Federal Project experience is Mandatory
Key Responsibilities Include :
- Design and implement cloud security controls (AWS/Azure)
- Conduct security assessments, penetration tests, and forensics analysis
- Perform incident response using SIEM tools
- Administer and enhance IAM platforms (ForgeRock, SailPoint)
- Maintain and update security documentation (SSP, POA&M, Risk Assessment, etc.)
- Manage access control, provisioning, and de-provisioning of users
- Ensure compliance with security frameworks (NIST 800-53, MARS-e 2.0, IRS 1075)
- Administer cloud and physical firewalls (ASA, Fortinet)
- Support integration with Active Directory, LDAP, and Databases
- Monitor and tune security infrastructure for operational effectiveness
Key Skills include :
- Cloud Security: AWS (Security Groups, WAF, GuardDuty, CloudTrail, etc.), Azure
- Security Tools: SIEM, vulnerability scanners, firewalls, forensics tools
- IAM Platforms: ForgeRock, SailPoint – including SSO, password sync, ACLs, workflows
- Operating Systems: Windows and Linux security administration
- Programming/Scripting: Java, JavaScript, Shell scripts
- Compliance & Governance: NIST SP 800-53, MARS-e 2.0, IRS Pub 1075
- Security Certifications: (Preferred) CISSP, CSA STAR, CCSE, ISO, VCP
- Soft Skills: Troubleshooting, documentation, PMO process adherence
Minimum Qualification:
- A minimum of five (5) years of experience analyzing, defining, deploying, monitoring, and administering security requirements and controls for large and mission-critical IT systems.
- A minimum of five (5) years performing day-to-day security operations functions, including administration, troubleshooting, and resolution of various security
- components.
- A minimum of five (5) years of hands-on experience in performing cloud security functions.
- A minimum of five (5) years of experience in defining computer security requirements for high-level applications and evaluating approved security product capabilities.
- A minimum of five (5) years of demonstrated production experience using AWS Cloud supporting security operations.
- A minimum of five (5) years of experience with administering security for Windows and Linux operating systems.
- Experience in performing Security Incident Response and Forensics evaluation with SIEM tools.
- Experience with AWS security features such as Security Groups, Network Access Control List, Firewall, WAF, Guard Duty, Macie, CloudTrail, CloudWatch, Control
- Tower, etc.
- Experience with assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
- Demonstrated ability to perform scheduled maintenance activities such as patching, performance tuning, and backups.
- Demonstrated ability to perform user provisioning and de-provisioning activities.
- Experience in monitoring the security infrastructure for operational effectiveness.
Skill Required
one (1) Systems Security Specialist to plan, design, develop, administer, monitor, and govern various security policies, controls, and systems for the Health Benefit Exchange (HBX) and other systems.
Preferred Qualification:
- A minimum of seven (7) years of experience implementing, administering, and monitoring Security Controls and Governance for public-facing complex IT systems.
- A minimum of seven (7) years of specialized experience in defining computer security requirements for high-level applications, evaluating approved security product capabilities, and developing solutions to multilevel security problems.
- A minimum of seven (7) years of hands-on experience providing operational support for ForgeRock and Sailpoint IAM products.
- A minimum of seven (7) years of experience with the assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and
- vulnerabilities.
- A minimum of seven (7) years of experience conducting Incident Response testing to evaluate processes for detection, response, and reporting of security incidents.
Thank you