Senior Systems Security

Role Summary

The Senior Cloud Security & Identity Management Specialist will be responsible for designing, implementing, monitoring, and governing security controls across cloud-based, public-facing, and mission-critical healthcare systems. The role requires hands-on expertise in AWS security, IAM platforms, incident response, compliance frameworks, and security operations.

Key Responsibilities

Cloud & Infrastructure Security

• Design, implement, and maintain AWS cloud security controls

• Perform cloud security assessments, risk analysis, and remediation

• Administer and monitor:

  • Security Groups, NACLs, WAF, GuardDuty, CloudTrail, CloudWatch

• Support firewalls (cloud and on-prem) and network security controls

• Conduct penetration testing and vulnerability assessments

Identity & Access Management (IAM)

• Implement and support enterprise IAM solutions (ForgeRock, SailPoint, or equivalent)

• Manage:

  • User provisioning & de-provisioning

  • Access policies, password policies, and role-based access

• Integrate IAM with:

  • Active Directory, LDAP, databases, and applications

• Support SSO, MFA, and lifecycle management

Security Operations & Incident Response

• Monitor security events using SIEM tools

• Lead or support:

  • Security incident response

  • Forensics analysis

  • Root cause investigations

• Create and manage POA&M items and remediation plans

Governance, Risk & Compliance

• Maintain and update security documentation:

  • System Security Plans (SSP)

  • Risk Assessments

  • Privacy Impact Assessments

• Ensure compliance with:

  • NIST 800-53 / 800-37

  • IRS 1075

  • Healthcare and public-sector security standards

• Support audits and regulatory reviews

DevOps & SDLC Security

• Partner with DevOps and development teams to embed security into CI/CD pipelines

• Perform security impact analysis for system changes

• Support secure application design and deployment

Required Qualifications

• 8+ years of experience in IT security / cybersecurity

• 5+ years in security operations and administration

• 4+ years hands-on experience with AWS security

• Strong experience with:

  • IAM platforms (ForgeRock, SailPoint, Okta, Azure AD, or similar)

  • SIEM tools and incident response

  • Windows and Linux security administration

• Experience securing public-facing, high-availability systems

Preferred Qualifications

• Experience in healthcare, insurance, or government systems

• Hands-on experience with ForgeRock and/or SailPoint

• Familiarity with NIST frameworks and compliance

• Experience with:

  • Vulnerability management

  • Penetration testing

  • Firewall administration (Fortinet, Palo Alto, Cisco ASA)

• Scripting experience (Java, JavaScript, Shell, or Python)

• Security certifications (CISSP, CISM, CCSP, AWS Security, etc.)