Cynet Systems
PSO IT Security Specialist
Cynet Systems, Raleigh, North Carolina, United States, 27601
Job Description:
Duties:The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.This candidate will be expected to continuously assess the development process and suggest improvements.Supports the ISSO with the management of system security plans, ensures the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification, and provides support to achieve all activities associated with the Assessment and Authorization (A&A) process.Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies.The program participates in the IT Continuous Monitoring Program.Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.Monitor infrastructure assets and services, and evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informs Senior Leadership of security measures in place.Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.It is imperative that the candidate possess and apply comprehensive system security knowledge across key tasks and high impact assignments.5+ years of related work experience.5 years of experience updating or maintaining SSP/SSPP documents.5 years experience participating in Assessment & Authorization (A&A/ATO).5 years experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53.5 years of experience providing security engineering reviews and recommendations.5 years of experience working with large teams in an Agile environment.5 years of ISSO experience.Experience coordinating and working under an ATO.Experience assessing system modifications such as major and minor releases and potential security impacts.Experience providing recommendations for improvement to amend vulnerabilities.Experience assisting Program Managers and Senior Leadership in developing Correction Action Plans (CAPs) when responding to IT and Financial audits.H-1B visa is required.
Duties:The ideal candidate for this role plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.This candidate will be expected to continuously assess the development process and suggest improvements.Supports the ISSO with the management of system security plans, ensures the systems obtain and maintain an authorization to operate (ATO), and meets all requirements for certification, and provides support to achieve all activities associated with the Assessment and Authorization (A&A) process.Provides Security compliance oversight of information systems security program for applications and systems within the ATO boundary leveraging MARS-E, NIST, and HIPPA Guidelines.Coordinates with the O&M and Infrastructure team to ensure COTS and other support software is current and compliant with current InfoSec policies.The program participates in the IT Continuous Monitoring Program.Provides support to Software Developers, Engineers and other team members on the optimal methods to meet security requirements while minimizing impact and delays in meeting mission requirements.Work closely with the Enterprise Architecture (EA), Database Administrator (DBA), Migration and Application Development teams to develop and implement automated Disaster Recovery capabilities including automated alerting, notifications, containment, data backup & recovery.Partner with EA, and Application Development teams to develop Security Event Logging and Monitoring processes.Perform internal assessments of security controls to ensure compliance with legislation, regulation, and technical standards with technical teams.Monitor infrastructure assets and services, and evaluate application/system components through system compliance examinations and testing utilizing NIST 800-53.Tracks and monitors remediation efforts stemming from IT assessment and financial audits through Plans of Actions and Milestones (POA&Ms) and Correction Action Plans (CAPs) and informs Senior Leadership of security measures in place.Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure.It is imperative that the candidate possess and apply comprehensive system security knowledge across key tasks and high impact assignments.5+ years of related work experience.5 years of experience updating or maintaining SSP/SSPP documents.5 years experience participating in Assessment & Authorization (A&A/ATO).5 years experience supporting infrastructure assets and services by proactive monitoring, evaluating application/system components through system compliance examinations and testing utilizing NIST 800-53.5 years of experience providing security engineering reviews and recommendations.5 years of experience working with large teams in an Agile environment.5 years of ISSO experience.Experience coordinating and working under an ATO.Experience assessing system modifications such as major and minor releases and potential security impacts.Experience providing recommendations for improvement to amend vulnerabilities.Experience assisting Program Managers and Senior Leadership in developing Correction Action Plans (CAPs) when responding to IT and Financial audits.H-1B visa is required.