Today
Public Trust
Unspecified
Unspecified
Tysons, VA (On-Site/Office)
REQUIRED QUALIFICATIONS:
CLEARANCE:
- Will serve as the central point of contact for all security issues.
- Is able to demonstrate the following skills and competencies and an ability to meet the following requirements:
- Expert-level knowledge and experience ensuring the security of Identity Management or other Information Technology systems of similar size and complexity as the IDM. Experience with and enforcement of NIST and CMS security documentation listed in Attachment J-5 CMS Security and Privacy for Information and Information Security of this SOO, including but not limited to NIST 800-53, NIST 800-63, CMS Acceptable Risk Safeguards (ARS), CMS Risk Management Handbook (RMH) and CMS Federal Information Security Management Act (FISMA) Controls Tracking System (CFACTS) is preferred
- Ability to provide required documentation for, and coordinate, all Authority to Operate (ATO) and related audits;
- Ability to execute security scans and interpret the results, and then guide the appropriate response;
- Ensure continuous monitoring for security breaches;
- Ability to evaluate reports of results from all testing and monitoring activities and ensuring security threats are detected and remediated;
- Ability to work directly with project development teams to enable successful project implementation applying the recommended security tools, technologies and techniques;
- Ability to provide security expertise to project team engineers as needed;
- Ability to work with CMS product organization to develop secure business requirements, develop the security architecture and integrate into CMS' longer term platform strategy;
- Ability to develop and enhance the Security Architecture for highly scalable and fault-tolerant applications that adhere to expected standards and discipline from a security posture;
- Experience with Agile tools, including but not limited to Jira and Confluence, is preferred.
CLEARANCE:
- US Citizenship required
group id: 90943786
