Systems Security Specialist

CoreHive Computing, founded in 2003, is a leading technology consulting and solutions organization providing best-in-class IT consulting, advanced and managed services, HPC administration and architecture, cloud migration, and technical support services to organizations in all vertical markets.

CoreHive is seeking a full-time Systems Security Specialist to join our team in support of our Maryland-based customer. The Systems Security Specialist will plan, design, develop, administer, monitor, and govern various security policies, controls, and systems for the customer.

The work location is Baltimore, Maryland and is currently a hybrid work model. Flexibility required to work overtime, as needed. Must be eligible to work in the United States and, if selected, successfully complete a background check.

DUTIES AND RESPONSIBILITIES

• Develop and implement cloud security controls, cloud-based processes and tools, and cloud security task automation.
• Perform security assessments to identify security and privacy issues in AWS or Azure and finding solutions to provide required functionality securely.
• Continuously monitor all systems including cloud security operations, responding to security issues and escalating as necessary.
• Conduct security impact analysis of controls on proposed system changes.
• Conduct cloud security assessments and Penetration testing.
• Perform Incident Response and Forensics evaluation using security information and event management tools.
• Ensure that system security requirements are addressed during all phases of the system development life cycle.
• Review and update systems security documentation and artifacts such as Systems Security Plan, Information Security Risk Assessment, Privacy Impact Assessment, Systems Security Report, Correction Action Plan, Plan of Action & Milestones.
• Create and track POA&M requirements for resolving security findings.
• Administer cloud-based and physical firewalls.
• Deploy and administer Identity and Access Management products in various operating systems.
• Perform monitoring and operations of Identity and Access Management implementation.
• Design enhancements in Identity and Access Management products ForgeRock and SailPoint.
• Maintain, monitor, and provide operational support for IAM products, computer programs, systems, and other security technologies and revise system design and quality standards.
• Make changes to IAM and underline applications for enhancing enterprise security and ensure safe and secure operation to enable access to our systems for our employees, contractors, consumers, and stakeholders.
• Perform Security Incident Response and Forensics evaluation using security information and event management tools.
• Provide operational support for other security technologies.
• Perform account/access management with IAM and other security tools.
• Adhere to all security, change control, and Project Management Office policies, processes, and methodologies.

MINIMUM QUALIFICATIONS

• A minimum of two (2) years of experience analyzing, defining, deploying, monitoring, and administering security requirements and controls for large and mission-critical IT systems.
• A minimum of two (2) years performing day-to-day security operations functions, including administration, troubleshooting, and resolution of various security components.
• A minimum of two (2) years of hands-on experience in performing cloud security functions.
• A minimum of two (2) years of experience in defining computer security requirements for high-level applications and evaluating approved security product capabilities.
• A minimum of two (2) years of demonstrated production experience using AWS Cloud supporting security operations.
• A minimum of two (2) years of experience with administering security for Windows and Linux operating systems.
• Experience in performing Security Incident Response and Forensics evaluation with SIEM tools.
• Experience with AWS security features such as Security Groups, Network Access Control List, Firewall, WAF, Guard Duty, Macie, CloudTrail, CloudWatch, Control Tower, etc.
• Experience with assessment and evaluation of information systems to recommend changes and mitigate threats, risks, and vulnerabilities.
• Demonstrated ability to perform scheduled maintenance activities such as patching, performance tuning, and backups.
• Demonstrated ability to perform user provisioning and de-provisioning activities.
• Experience in monitoring the security infrastructure for operational effectiveness.