Security Lead with Cloud and Curam Experience

Role : Security Lead with Cloud and Curam Experience

Client : Government of South Carolina

Work Type : Remote

Duration : Long Term

Compensation : Based on Experience

eSystems Inc. is a fast-growing Systems Integrator based in Princeton, New Jersey. We provide strategic IT solutions and services with primary practice areas in Java and Microsoft centric e-Business solutions, ERP solutions, Enterprise Application Integration, Data Warehousing and Business Intelligence solutions.

Our clients include Fortune 500 corporations, government agencies, small and mid-sized local businesses, and non-profit organizations.

As an equal opportunity employer, eSystems complies with all applicable laws, rules and regulations preventing discrimination against job applicants based on: race, ethnicity, religious beliefs, gender, gender identity, age, veteran status, marital status, physical challenges, or any other relevant factor

THE JD and the required skillset are below. Please make sure that the suitable candidate has atleast 90% of the skillset mentioned

Skills:

• Cram experience (very important)
• Experience in an AWS environment (very important)
• HHS experience, especially in a Medicaid and/or health care-related context (very important)
• The person will likely need to spend occasional time onsite, so the closer to South Carolina the better
• Any Security certifications such as these below would be a big plus:
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)
• CompTIA SecurityX (formerly CASP+)
• Offensive Security Certified Professional (OSCP)
• Certified Information Systems Auditor (CISA)

Responsibilities:

• Follow processes and procedures documented in the SCDHHS HIPAA Business Associate Agreement (BAA).
• Develop and provide a SCDHHS currently adopted version of ARC-AMPE and HIPAA compliant System Security Plan (SSPP) which outlines the safeguards implemented to support the protection of government data.
• Maintain a secure system through regular security monitoring, patching, and alignment to industry best practices with regards to security and privacy.
• Provide SCDHHS Office of Cybersecurity (OCS) all environments vulnerability scans per Acceptable Risk Controls for Affordable Care Act (ACA), Medicaid, and Partner Entities (ARC-AMPE) requirements. This requirement includes third-party programs connected to the SCDHHS enterprise.
• Document the methodology used to identify, defend against, and respond to risk of any breach, loss, or unauthorized/improper access/use/disclosure of government data or information systems that support government data, to include notification of such to SCDHHS.
• Work with SCDHHS to execute any Plans of Actions & Milestones (POA&Ms) identified in the Independent Assessment of Security and Privacy Approach section.
• Provide Security and Privacy related Deliverables as documented in the Consolidated Deliverables Management List (CDML).
• Perform background investigations on all Contractor staff with access to government data, with access to information systems supporting SCDHHS, or providing services to SCDHHS as part of this contract. The Contractor will ensure the background check(s) do not contain any adverse information before granting access.