Join to apply for the IT Security Specialist role at HighCloud Solutions
Location: Raleigh, NC (Hybrid)
Duration: 12 Months
Interview Type: Either Webcam Interview or In Person
Job Type: C2C, W2
Job Description:
The NCDHHS-Privacy and Security Office (PSO) requires the services of an IT Security Specialist to perform and support privacy, security, and continuity of operations goals, policies, and practices, including contract reviews and risk assessments based on NIST 800-53 rev 5.
Duties include, but are not limited to:
- Perform Business Impact Analysis
- Create Business Continuity Planning (BCP), Disaster Recovery Testing (DR), and Continuity of Operations (COOP) for the division
- Conduct Access Control Reviews
- Monitor Employee HIPAA and Security Training
- Perform NIST and HIPAA-based risk assessments (NIST 800-53 rev 5) and remediate identified gaps
- Review CAPS/POAMS and vulnerability scanner findings and assist with remediation
- Respond to privacy and security incidents
- Review and approve contracts based on Federal, State, and DHHS Privacy and Security requirements
- Review security exception requests and Privacy Threshold Analysis
- Participate in system reviews/audits while administering security policies, activities, and standards in accordance with Federal, State, and Departmental (DHHS) regulations and policies affecting DHHS applications.
Qualifications:
- The ideal candidate will have experience working with current and emerging information security technologies and development methodologies.
- Bachelor's degree in computer science, management information systems, or related field preferred.
- Good analytical and creative problem-solving skills, and the ability to independently perform a variety of complicated tasks with a wide degree of creativity and latitude is expected.
Skill Required / Desired Amount of Experience:
- Risk Management - Must be able to identify gaps through risk management and assist in the development of mitigation strategies. Required: 5 Years
- Must be able to assist in reviewing projects and systems throughout all phases of their life cycle in an effort to identify Privacy and Security organization needs. Required: 5 Years
- Must be able to serve as a knowledge base for organizations as it relates to compliance requirements and mitigation strategies. Required: 5 Years
- HIPAA Experience Required: 6 Years
- Risk Assessments based on NIST 800-53 Required: 5 Years
- Good Management and presentation skills Required: 5 Years
- Must be able to develop BCP, COOP, DR, and BIA Required: 5 Years
Seniority Level
Mid-Senior level
Employment Type
Contract
Job Function
Information Technology
Industries
IT Services and IT Consulting
#J-18808-Ljbffr