Job Description :
NOTE: STRICTLY W2 / C2C NOT ALLOWED . If interested, please send your resume to gsingh[at]ameritconsulting[dot]com

Our client, one of world’s largest distributors of Healthcare systems, Medical supplies & Pharmaceutical products.

JOB DESCRIPTION:
Provide IT systems asset management coverage assurance, threat & vulnerability management, forensics, and security administration and operations support, which includes planning, analyzing, coordinating, reporting, and consulting as necessary to support the IT Risk Leader for the McKesson Connected Care & Analytics (MCCA) division. Support is prioritized to fulfill the RelayHealth Pharmacy Centers for Medicare & Medicaid Services (CMS) Federal Information Security Management Act (FISMA) contract requirements and NDH2 data center security systems architecture and tools as directed. More specifically, the following tasks will be performed in this role as follows:
Allow the business to anticipate and respond to changing threats, vulnerabilities, and technologies.
Implement security technology solutions as necessary to support the business.
Assist in developing an ongoing continuous monitoring program, strategy, system development lifecycle process, and change control to minimize resources needed for reauthorizing IT systems.
Act as liaison with 3rd party contracted entities where independent security assessments, vulnerability analysis, penetration testing, and other activities are required according to government and commercial contract requirements.
Perform configuration management and control processes for organizational information systems.
Security status reporting to appropriate organizational leadership.
Identify undiscovered system components, misconfigurations, vulnerabilities, and unauthorized changes, all of which, if not addressed, can expose organizations to increased risk
Provide gap analysis between security policies/standards/regulations and practices, processes, and solutions; recommend actions to ITRL.
Assist ITRL in establishing, documenting, and managing processes and supporting tools used to accomplish IT compliance with regulatory and best practice security and compliance frameworks (e.g. FISMA-NIST 800-53, HIPAA-HITECH, HITRUST, ISO 27001, etc
Help ITRL coordinate with Business Units and Corporate functions in the event of incidents or breaches
Interact with other IT Staff / Business Leads in meetings in understanding security issues and discuss solutions.
Assist with threat & vulnerability management process and tools
Prepare automated and ad hoc reports and/or interpret data from various security sources (e.g. McAfee ePO, RSA Envision SIEM, TippingPoint IDS/IPS, Tenable Nessus, Vulnerability Scanner, Rapid7 Nexpose, WebInspect, data loss prevention, etc
Monitor and or administer appropriate access and policies for security systems
Apply applicable encryption methods

BUSINESS EXPERIENCE:
4+ years in Information Security and/or Compliance related services, IT audit, Internal Audit and/or Risk Management Experience. Knowledge of the healthcare and software industries is a plus.

EDUCATION:
4-year degree in computer science or related field or equivalent experience, GIAC, SSCP, CISSP or other similar professional designations

KNOWLEDGE/SKILLS:
FISMA, NIST, and HIPAA
Security Information & Event Monitoring (SIEM) administrative management
Network Intrusion Prevention and Detection System (IDPS)
Vulnerability & Configuration scanning on servers and network appliances
Host Intrusion Detection System (HIDS)
Anti-Virus
Web Filtering/Monitoring
Previous & Current versions of Windows Server OS & Linux
Understanding of system and network security and architecture controls
Strong interpersonal skills to build/ maintain ongoing business relationships
Able to exercise professional judgment within defined procedures
Experience in security risk assessments and/or audits
Familiar with healthcare and financial compliance regulations and IT and security frameworks and standards

I''d love to talk to you if you think this position is right up your alley

If you''re looking for rewarding employment and a company that puts its employees first, we''d like to work with you. We''''re driven, people driven. We also offer flexible Insurance options.

Gurjant (Gary) Singh
Sr. IT Recruiter
Email: gsingh[at]ameritconsulting[dot]com

NOTE: Candidates that are offered a position are required to pass pre-employment drug and background screening

Client : Direct Client