Job Description :
Role: IT Security Architect
Location: Silver Springs, MD
Duration: 6 month+ contract
Visa: Citizen or GC or GC EAD or TN Only
NO H1s or OPTs or OPT EADs Please
Description:
The Security Architect will provide security expertise as a member of the enterprise architecture team to design network security infrastructure (firewalls, IDS, etc around new solutions such as patient or physician portals, as well as provide day to day operational IT security support. You will act as the subject matter expert and provide technical direction for strategic and operational security activities in support of our healthcare client. This position requires working onsite daily at our client''s facility in Silver Springs, MD.
Responsibilities: - Provide technical subject matter expertise to security leadership (CISO and ISM) to support security strategy development and assist the Information Security Manager in quantifying risks to assist the ISM and CISO in recommending which risks should be prioritized when setting security strategy. - Maintain infrastructure and applications incident response plan, perform incident response and investigations, and consolidate incident data for analysis and reporting. - Develop and maintain information security plan and secure configuration standards for applications and infrastructure. - Perform Intrusion Detection System (IDS/HIDS) management, including system management and maintenance, and intrusion detection analysis and reporting. - Perform data loss prevention management, including incident detection and remediation. - Perform web security management, including content filtering system management, and acceptable use monitoring and identification. - Hands-on security activities such as relocating security equipment during a move or being the "smart-hands” on site to support SOC troubleshooting activities of security equipment. - Perform standard information security risk assessments and incident investigation support - Provide support related to processes used for data collection and standard data handling chain of custody procedures. - Provide technical subject matter expertise on the capabilities and limitations of emerging threats in support of security product selections. - Perform security review and security design direction for new implementation of applications and infrastructure, such as access controls and base configuration for server, desktop, and network device images to ensure appropriate security settings are configured. - Act as point of contact for auditors for responses and clarifications on security related items, and ensure secure configuration standards audit and HIPAA compliance for new systems and upgrades.
Key Skill Requirements:
- 10 years of relevant IT Security experience or equivalent combination of education and work experience (i.e. undergraduate degree and 6-8 years relevant experience or graduate degree and 4-6 years relevant experience) - 5 years experience with End-Point Threat Management (i.e., AV, HIPS, Spyware, encryption, etc - Strong technical background covering key layers of security architecture, such as Firewall and IDS/IPS architecture and management - Experience with Data Loss Prevention and vulnerability scanning and remediation - Windows/Unix Server Security - In-depth knowledge of government regulations (e.g. HIPAA) governing information security in healthcare applications - At least one of the following certifications: CISSP or CISM Preferences: - Customer relationship management experience at the senior level
1 5+ years experience or proficiency with security data; End-Point Threat Management (i.e., AV, HIPS, Spyware, encryption, etc.
2 Strong technical background covering key layers of security architecture, such as Firewall and IDS/IPS architecture and management.
3 CISSP or CISM or CEH certification.