Information System Security Specialist

  • Baltimore, MD
  • Posted 15 hours ago | Updated 15 hours ago

Overview

On Site
Depends on Experience
Contract - W2

Skills

Fortinet
Computing Curriculum Software Engineering
Documentation
Cisco PIX
ACL
Active Directory
Forensics
Identity Management
ASA
Impact Analysis
Database
Collaboration
Information Security Governance
Microsoft Exchange
Microsoft Windows
Information System Security
Amazon Web Services
Incident Management
Microsoft Azure
Management
Firewall Administration
SailPoint
NIST SP 800 Series
Scripting
Penetration Testing
Cloud Computing
NIST 800-53
PMO
ISO 9000
Firewall
DevOps
Cloud Security
Change Control
CISSP
Regulatory Compliance
SSP
Shell
System Security
Lifecycle Management
LDAP
JavaScript
Java
Privacy
SIEM
Security Controls
SSO
Provisioning
Linux
WAF
VCP

Job Details

Job Title: Information System Security Specialist

Location: Baltimore MD
Type: Contract

Job Overview:

We are seeking an experienced Information System Security Specialist to support the Maryland Health Benefit Exchange (MHBE). The successful candidate will be responsible for implementing and managing cloud security controls, conducting security assessments, incident response, IAM administration, and supporting system security documentation and compliance.

Key Responsibilities:

  • Implement and maintain cloud security controls and automation for AWS and Azure environments.

  • Collaborate with DevOps and developer teams to assess and mitigate security and privacy issues.

  • Continuously monitor the HBX system and respond to cloud security threats.

  • Perform security assessments, penetration testing, and incident response using SIEM tools.

  • Conduct impact analysis and security control reviews during system changes.

  • Manage and maintain IAM systems (ForgeRock and SailPoint), including provisioning and de-provisioning activities.

  • Administer cloud-based and physical firewalls.

  • Update and maintain all required system security documentation (SSP, PIA, POA&M, etc.).

  • Ensure compliance with NIST 800-53, NIST SP 800-37, IRS Pub 1075, and MARS-e 2.0.

  • Provide operational support for IAM, access management, and security tools.

  • Work with PMO teams to align with change control and project methodologies.

Minimum Qualifications:

  • 2+ years of experience analyzing, deploying, and administering security controls for mission-critical systems.

  • 2+ years of hands-on cloud security experience, including AWS (Security Groups, GuardDuty, CloudTrail, WAF, etc.).

  • 2+ years of experience in SIEM-based incident response and forensics.

  • 2+ years of experience administering security for both Windows and Linux environments.

  • Experience conducting vulnerability assessments and recommending mitigation strategies.

  • Proficiency in user provisioning, de-provisioning, and access monitoring.

Preferred Qualifications:

  • 4+ years in security governance and operations for large public-facing IT systems.

  • 4+ years of hands-on experience with ForgeRock and SailPoint IAM systems.

  • Experience configuring single sign-on, lifecycle management, password sync, and ACL policies.

  • Experience with firewall administration (e.g., Cisco ASA, Fortinet).

  • Scripting knowledge (Java, JavaScript, Shell).

  • Familiarity with integrating IAM systems with LDAP, Active Directory, and databases.

  • Certifications such as CISSP, ISO, CCSE, CSA STAR, QCS, CNA, or VCP.

  • Experience working with PMO frameworks, change control, and documentation processes.

Work Conditions:

  • May require overtime, weekend, and holiday support based on system needs.

  • Flexibility to respond to urgent incidents or deployments during off-hours.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.