Job ID: BL-10599-1 (98091024)
Location: Columbia, SC
Duration: 12+ months Hrs/Wk:40.00
Remote Work Availability: 0%
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
1. 4+ years of experience in cyber security and/or cyber defense
2. Experience in managing security incidents
3. A firm understanding of the offerings and capabilities within Amazon Web Services (AWS) and/or GCP and Microsoft Azure platforms
4. Ability to communicate clearly, verbally and in writing; to interact effectively with internal and external vendors, project team members, management and agency departments; to build relationships and use facilitation skills with both technical and non-technical personnel
5. Proficiency and knowledge of cybersecurity and analysis tools, tactics, techniques, frameworks, and procedures which supports the identification and analysis of cyber events and incidents
6. Ability to collaborate and coordinate with multiple teams and vendors
7. Ability to work independently and as a member of a team
8. Ability to multitask and prioritize tasks effectively in order to meet deadlines
9. Must be intermediate to advanced skills in additional Microsoft Office products (Word, Excel, PowerPoint, Visio) and working with templates and style guidelines for branding consistency
10. Keen attention to detail while maintaining the ability to see the big picture
11. Ability to absorb and retain complex processes
PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
1. 3+ years of experience with Cloud platforms such Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP)
2. Prior experience working with Cloud security and governance tools, cloud access security brokers (CASBs), and infrastructure as code (IaC)
3. Experience or knowledge with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, CloudFormation, Terraform, Ansible) preferred
4. Experience or knowledge with full-stack deployment
5. Experience in a technical support environment
6. Previous experience performing Digital Forensics
REQUIRED EDUCATION/CERTIFICATIONS:
ANY ONE OR COMBINATION OF:
• SECURITY +, (ISC)2 SYSTEMS SECURITY CERTIFIED PRACTITIONER (SSCP), GIAC SECURITY ESSENTIALS (GSEC), COMPTIA CLOUD+, CERTIFICATE OF CLOUD SECURITY KNOWLEDGE (CCSK), AWS CERTIFIED CLOUD PRACTITIONER
• OR SIMILAR WITH VALID EXPERIENCE
PREFERRED EDUCATION/CERTIFICATIONS:
• BS degree in computer science, information technology, engineering or similar discipline
• Cloud Security certification (i.e. AWS Certified Solutions Architect, CASP+)
• AWS Security Certification
• GIAC CERTIFIED INCIDENT HANDLER (GCIH)
Experience
Administrative Verbal Communication Skills Yes 2 Expert Currently Using 6 + Years
Administrative Written Communication Skills Yes 2 Expert Currently Using 6 + Years
Cloud cloud platforms / environments Yes 1 Intermediate Currently Using 1 – 2 Years
Education High School Diploma Yes 1 Advanced Currently Using 4 – 6 Years
Education Technical Certifications Yes 1 Advanced Currently Using 1 – 2 Years
Education Bachelor of Science Degree No 1 Advanced Within 10 Years 2 – 4 Years
Education CISSP No 1 Advanced Within 6 Months 1 – 2 Years
Network Security Cybersecurity Yes 1 Intermediate Currently Using 4 – 6 Years
Operating Systems/APIs Linux Yes 1 Intermediate Within 6 Months 2 – 4 Years
Operating Systems/APIs Windows Yes 1 Intermediate Within 6 Months 2 – 4 Years
Packaged Applications Microsoft Office Suite Yes 2 Advanced Currently Using 4 – 6 Years
Specialties Azure Cloud and Virtualization No 1 Intermediate Within 1 Year 1 – 2 Years
Specialties Experience in system analysis and information technology No 1 Intermediate Within 6 Months 1 – 2 Years
Specialties Medicaid or healthcare experience No 1 Intermediate Within 2 Years 1 – 2 Years
Additional Skills: REQUIRED EDUCATION/CERTIFICATIONS:
ANY ONE OR COMBINATION OF:
• SECURITY +, (ISC)2 SYSTEMS SECURITY CERTIFIED PRACTITIONER (SSCP), GIAC SECURITY ESSENTIALS (GSEC), COMPTIA CLOUD+, CERTIFICATE OF CLOUD SECURITY KNOWLEDGE (CCSK), AWS CERTIFIED CLOUD PRACTITIONER
• OR SIMILAR WITH VALID EXPERIENCE
SCOPE OF THE PROJECT:
The Office of Information Assurance is tasked with securing the Agency cloud infrastructure and performing ongoing enterprise cybersecurity threat monitoring and incident response capabilities. A strong candidate for this position should possess experience in the following:
• Cyber Threat Response and Incident Handling
• Cyber Security Operations
• Cloud platforms such as Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP)
• Cloud Security
DAILY DUTIES / RESPONSIBILITIES:
The Cloud Security Specialist will help Applications Team build and manage a Secure Cloud Infrastructure by adhering to Agency policy and industry best practices.
This position will report directly to the Chief Information Security Officer to drive innovation and maturation of the Agency Cyber threat detection and response capabilities. We are looking for candidates who are highly organized, can work independently in a fast-paced environment and produce multiple quality deliverables within defined deadlines. This role is involved in projects or issues of high complexity that requires an individual who can quickly think on their feet, challenge the status quo, and drive efficiencies through the process.
Essential Responsibilities
1. Perform threat identification and analysis of risks to the Medicaid Enterprise Cloud environment
2. Assist in the implementation and advancement of Continuous Monitoring and Incident Response processes and procedures
3. Assist in investigation and remediation of security incidents and issues
4. Identify cloud security risks
5. Collaborate with teams to create and potentially execute incident mitigation and remediation plans
6. Perform event correlation using information gathered form a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
7. Performing analysis on all events of interest to determine root cause and impact
8. Create documentation on specific remediation steps to close vulnerabilities or mitigate risk to acceptable levels
9. Create technical documentation for other analysts to follow
10. Revise documents and artifacts as tactics and techniques evolve to address new and emergent threats and trends
11. Work with Information Technology, Application Development and Business Teams to advance security efforts of the Medicaid Enterprise
12. Conducts security assessments to identify areas of risk and ensure gaps are remediated
13. Identify and coordinate the remediation of all weaknesses to the Medicaid Cloud Environment
Remote Work Availability: 0%