Systems Security Specialist
Description:
e&e is seeking a Systems Security Specialist for a hybrid contract opportunity in Baltimore, MD!
We are seeking a highly skilled Systems Security Specialist to support the security operations of its health insurance marketplace systems.
This role will be responsible for the planning, implementation, monitoring, and support of security policies and controls across cloud-based and on-premise environments.
The ideal candidate will have hands-on experience in cloud security, identity and access management (IAM), and cybersecurity incident response, with a strong understanding of compliance frameworks and best practices.
Responsibilities: Design and implement cloud security controls and automation processes for AWS and Azure environments.Conduct comprehensive security assessments and collaborate with DevOps and development teams to address security vulnerabilities.Monitor systems for security threats, respond to incidents, and conduct root cause analysis using SIEM tools.Perform impact analyses, penetration testing, and cloud-based security evaluations.Maintain and update security documentation including SSPs, Risk Assessments, POA&Ms, and CAPs.Manage cloud and physical firewalls, and support IAM tools such as ForgeRock and SailPoint.Handle provisioning, de-provisioning, and daily IAM operations.Ensure security is integrated throughout the system development lifecycle.Provide support for scheduled security maintenance and broader security infrastructure initiatives.Adhere to established security, change control, and PMO protocols and procedures.
Requirements: Minimum Requirements2+ years of experience in security operations for large, mission-critical IT systems.2+ years defining and implementing application and cloud security measures.2+ years hands-on experience in AWS cloud security administration.Proficiency in managing security for both Windows and Linux environments.Experience using SIEM tools and AWS security components (e.g., GuardDuty, WAF, Security Groups).Strong understanding of IAM principles and provisioning/de-provisioning processes.
Preferred Qualifications4+ years in cybersecurity roles supporting complex, public-facing systems.Specialized experience in multilevel security assessments and risk evaluations.Proficiency with ForgeRock and SailPoint IAM tools.Experience with penetration testing, vulnerability management, and incident response planning.Familiarity with Active Directory, LDAP, and IAM integration configurations.Scripting and programming knowledge (Java, JavaScript, shell scripting).Knowledge of compliance standards such as NIST, MARS-e 2.0, IRS Pub 1075.Experience configuring ASA or Fortinet firewalls.Security certifications such as CISSP, ISO, CCSE, CNA, or VCP.Experience operating within PMO standards and documentation practices.
No C2C