IT Security Specialist

IT Security Specialist

Job Title IT Security Specialist Job ID 27736248 Work Remote Yes Location Washington, DC Other Location Description

About Our Company:

Delmock Technologies, Inc. (DTI) is seeking IT Security Specialist to explore exciting career opportunities. DTI is a leading HUBZone business in Baltimore, known for delivering innovated IT and Health solutions with a commitment to ethics, excellence, and superior customer service. At DTI, we balance continuous growth and innovation with a strong dedication to corporate social responsibility. Recently ranked as high as #3 among HUBZone companies in a GOVWIN survey, DTI offers a dynamic environment for those passionate about impactful projects, community involvement, and contributing to a top-ranking Federal project support team.

Join our talented team and be part of a company that values both professional excellence, community impact, and diversity of ideas. DTI is committed to hiring and maintaining a diverse workforce. We are an equal opportunity employer making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class.

Role Summary:

• The Information Assurance (IT Security Specialist) is responsible for managing the cybersecurity needs of OBIM and HART systems, ensuring compliance with federal law, DHS regulations, and NIST guidance. This role involves overseeing cybersecurity operations, certification and accreditation processes, vulnerability management, and security engineering. The IT Security Specialist maintains the security posture of large-scale IT systems, providing technical expertise and implementing security best practices to safeguard sensitive information and systems.

Responsibilities:

• Cybersecurity Management: Direct the execution of system security activities, ensuring compliance with federal regulations and DHS policies.

• Certification and Accreditation: Oversee the development and maintenance of certification and accreditation packages for existing and new systems.

• Vulnerability Management: Conduct vulnerability scanning, analysis, and remediation, ensuring timely identification and mitigation of security risks.

• Risk Assessment: Perform cybersecurity risk assessments, identifying unmitigated vulnerabilities and developing risk mitigation strategies.

• Incident Response: Support incident handling procedures, ensuring efficient and effective responses to security incidents.

• Security Engineering: Provide security engineering support, integrating security solutions and best practices into systems delivery and new technology implementations.

• Compliance Monitoring: Ensure compliance with FISMA and DHS security requirements, including annual self-assessments and security awareness training.

• Policy Development: Develop and maintain security policies, procedures, and documentation to ensure consistent security implementation across the organization.

• Stakeholder Engagement: Collaborate with internal and external stakeholders to align security objectives and compliance requirements.

Minimum Requirements:

• Experience: Over 10 years of relevant experience in information security, including work with large-scale IT systems and database environments.

• Certifications: Certified Information Systems Security Professional (CISSP) is required.

• Technical Proficiency: Extensive experience with cybersecurity tools, techniques, and standards, including NIST guidelines and DHS policies.

• Knowledge and Expertise: In-depth understanding of FISMA compliance, vulnerability management, and incident handling procedures.

• Education: A bachelor's degree or higher in a relevant field such as cybersecurity, information technology, or computer science.

Preferred:

• Cloud Security: Certified Cloud Security Professional (CCSP) is preferred.

• Security Tools: Proficiency with tools such as Xacta Information Assurance Manager and DHS Cyber Security systems.

• Security Engineering: Experience in developing and implementing security solutions for cloud-based and on-premises environments.

• Compliance Management: Strong background in managing POA&Ms, generating SCRs, and creating risk memos.

• Incident Response: Experience in coordinating and managing incident response activities.

• Advanced Degrees: A master's degree or higher in cybersecurity, information technology, or a related field.

• Leadership Roles: Proven track record in leadership roles within information security management.

• Strategic Development: Experience in developing and implementing cybersecurity strategies and policies, including updates to IT Security Strategy documents.

• Public Key Infrastructure: Experience in managing public key infrastructure registration activities and firewall change requests.

• Security Assessments: Expertise in conducting security risk assessments, developing security policies, and maintaining security compliance across programs.

Location:

• This opportunity is remote.

Option 1: Create a New Profile