Enterprise Security Architect securing and modernizing our EHR platform. Collaborating with cross - functional teams to integrate security practices into development processes.
About the role
- Information Systems Security Manager for Empower AI working on AROWS compliance and security inspection. Develops policies and procedures for information security and risk management.
Responsibilities
- Conduct information system security inspections, tests, and reviews of the Risk Management Framework (RMF) Information Assurance Package to ensure AROWS maintains an Authority to Operate (ATO).
- Update artifacts and information within the Enterprise Mission Assurance Support Service (eMASS) to validate Security Controls and Assessments.
- Develop Plan of Actions and Milestones (POAMs) for non-compliant items.
- Implement and enforce a formal information system security program, including development and review of security concept of operations, systems security plans, cyber security policies, security control assessments, contingency plans, configuration management plans, incident response plans, plan of actions and milestones, risk management plans, vulnerability scanning, and/or vulnerability management plans.
- Demonstrate hands-on knowledge and experience with Information Assurance/Cyber Engineering requirements, design and implementation to include systems engineering principles, requirements analysis, system development (software and hardware), network security architecture concepts (e.g., topology, protocols, components, etc.), and IT security principles and methods (e.g., firewalls, demilitarized zones, encryption, etc.).
- Ensures software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides /security requirement guides).
- Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs and stewards and AOs of interconnected IT.
- Implement Security Information and Event Management Processes, including log aggregation, log analytics, visualization, alerting, and log retention.
Requirements
- Bachelor’s Degree in Information Systems, Information Assurance Management, Computer Science, or related field.
- 2-7 years experience IAM Level II DoD approved cybersecurity baseline certification, or higher (CAP, CASP, CISA, CISM, CISSP (or Associate), GSLC)).
- Demonstrated on-the-job knowledge and experience of the Risk Management Framework (RMF) process and the National Institute of Standards and Technology (NIST) publications (specifically NIST 800-53 and NIST 800-37), including development and maintenance of associated certification and accreditation documentation.
- Must possess active Secret Security Clearance.
- Must be within 2 hours commute of Joint Base Andrews and able to report onsite if needed for meetings, training, etc.
Benefits
- None listed
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Director of Business Unit Security Officer leading risk assessments and safeguarding IT solutions across Canadian Technology Business Units. Collaborating with the Head of Information Security and Risk Management for compliance and security awareness.
Health and Safety Assistant responsible for analyzing workplace safety documentation and training service providers on compliance actions. This role involves direct training and guidance for clients.
Senior Security Engineer at Pave Bank enhancing security practices and addressing vulnerabilities in fintech. Focus on safeguarding programmable banking infrastructure through proactive security measures.
Assistant Security Director helping oversee hotel security operations and coordinating with local law enforcement. Involved in training security personnel and managing emergency responses.
Cybersecurity Auditor performing security analyses and CCRI for NexThreat. Ensuring compliance with cybersecurity regulations and providing actionable recommendations.
Security Engineer at Benchling responsible for safeguarding sensitive data through security programs and infrastructure. Collaborating with engineering teams to implement security features in AWS cloud environments.
Technicien QSSE supportant la politique de qualité et sécurité au sein de l’Adapei 63. Rattaché à la direction pour déployer les processus et aider les équipes dans leurs missions.
IT & Cybersecurity Manager overseeing IT systems and compliance for Crown Roofing. Leading digital transformation and AI strategy in a hybrid work environment.
IS
Coordinating IT governance policies and managing risks at Instituto de Responsabilidade Social Sírio - Libanês. Ensuring compliance with regulations and effectively reporting IT governance KPIs.