Home       |     Overview      |     Candidate Login      |     Post Resume       |     Contact us
 
  
     
     
Search Jobs
     
Keywords,Title,Skills,Company  Location,City,State,Zip  
  Advanced Search
     
FISMA HIPAA Regulations IT Security MARS E Risk Management Audit Experience EGRC So
 
Requirement id 137229
Job title Consultant
Job location in Columbia, SC
Skills required Information Security Compliance Processes, Government Experience, FISMA, HIPAA Regulations IT Security MARS E Ris
Open Date 28-Oct-2022
Close Date
Job type Contract
Duration 12 Months
Compensation DOE
Status requirement ---
Job interview type ---
   Email Recruiter: coolsoft
Job Description Consultant: Information Security Compliance Processes, Government Experience, FISMA, HIPAA Regulations IT Security MARS E Ris

start date:11/22/2022
End date:12 MONTHS from start date

submission deadline: 11/4/2022

client info : Department of Health and Human Services

Note:

* INTERVIEW PROCESS (phone, video or in-person, how many rounds of i/vs, etc.)

* In-person or video required for initial interview. Phone may be used for secondary interview(s)

Description:

The SCDHHS Office of Information Assurance (OIA) is responsible for maintaining the confidentiality, integrity, and availability of SCDHHS Information Systems and Data. OIA seeks an expert in Information Security and Compliance to serve as an ISSO that can bring hands-on experience to the establishment, implementation and/or enhancement of Information Systems Security and Compliance efforts based on State/Agency Policy/Standards and Regulatory Guidance such as FISMA, NIST 800-53, CMS MARS-E, HIPAA, SSA TSSR, etc.

DAILY DUTIES / RESPONSIBILITIES:

The ISSO will report to the Governance Risk and Compliance Manager within OIA and operate as an experienced consultant to SCDHHS leadership, business units, business partners and vendors.

Security Program Experience:

Experience with CMS MARS-E and/or other NIST Risk Management Framework (RMF) compliant programs is strongly desired and will be given the highest weight. Hands-on technical experience with a variety of technologies with a well-documented history of integrating security principles to existing and new technology platforms is a key factor of success for this position.

Experience with development and integration of RMF/Audit & Assessment (A&A) tasks and CDML artifacts into the System Development Life Cycle (SDLC) is ideal.

Experience in security as related to Cloud services and vendor management would be considered desirable for this position.

Technical Knowledge:

Hands-on experience with any or all the following technologies would be considered key factors of success for this position:

• AWS Services (EC2, ECR, S3, etc.)
• MarkLogic NoSQL or other non-relational database technologies
• MSSQL, Oracle or other relational database technologies
• RSA Archer
• Identity and Access Management (IAM) solutions
• Linux and Windows servers
• Network Firewalls, Intrusion Prevention Systems (IPS), Switching and Routing Infrastructure
• Tenable SecurityCenter and Nessus Scanner
• DevOps

General Duties and Responsibilities:

1. Directly support the design, development, implementation and/or ongoing maturation of SCDHHS security and compliance efforts
2. Audit and assess internal agency systems as well as business partner/service provider information system security controls
3. Utilize Microsoft Office software suite, System Center Service Manager (Ticketing system), RSA Archer eGRC system, Bizagi, Atlassian and other products to document and report on information gathered during A&A activities or other OIA efforts
4. Lead security and compliance reviews of Contracts, Business Associate Agreements, Data Usage/Sharing Agreements and other type documents and artifacts
5. Perform or assist with third-party audits and/or assessments of agency and business partner systems
6. Collaborate with agency leadership, business partners and other parties/stakeholders to provide recommendations for security and compliance risk mitigation efforts

Required Knowledge/Skills:

1. Must have current, strong working knowledge of NIST 800-53, CMS MARS-E, SSA TSSR, and HIPAA Security and Privacy.
2. 5+ years of Hands-on experience in IT working with and/or auditing Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure and Web-based Applications
3. ISC(2), ISACA, SANS GIAC and/or other Information Security Certificat
 
Call 502-379-4456 Ext 100 for more details. Please provide Requirement id: 137229 while calling.
 
Other jobs in SC: Beaufort (1), Blythewod (2), Blythewood (3), Charleston (17), Columbia (37), Greenville (4), Hartsville (2), North Charleston (2), Overland Park (1), San Francisco (1), SENECA (4), South Carolina (1), Spartanburg (3), Unknown (2),
Information Security Compliance Processes job openings in Columbia, SC
Jobs List

SECURITY ANALYST- CONSULTANT - 9598-1
Create date: 17-Nov-2020
Start Date :11/24/2020

Submission Deadline :11/24/2020

Client Info : Department of Health and Human Services

Note :

* INTERVIEW PROCESS (phone, video or in-person, how many rounds of i/vs, etc)

In-person or video for initial interview. Phone may be used for secondary interview(s)
FISMA Jobs in SC Columbia Consultant - (in Columbia, SC))
 
 
 
 
(Consultant: Information Security Compliance Processes, Government Experience, FISMA, HIPAA Regulations IT Security MARS E Ris in Columbia, SC)
     
Search Jobs
     
Keywords,Title,Skills,Company  Location,City,State,Zip  
  Advanced Search
     

    About Us     Services    Privacy policy    Legal     Contact us