Data Security Officer at Cognosante in Falls Church, Virginia

Posted in Other 12 days ago.

Type: Full Time

Job Description:

Security Clearance required:
No clearance required

Cognosante is on a mission to transform our country's healthcare and national security systems. With our health and security-focused solutions, we help public sector organizations achieve the important task of providing the best possible public services to American Citizens. From Enterprise IT, Data Science, and Security Services, to full-scale Consumer Engagement and Interoperability solutions, we are moving government services forward with transformation and innovation. Learn how we are making a difference in people's lives today!

Job Description

The Security Officer is responsible for all activities related to achieving and maintaining authorization to operate (ATO) for information systems supporting federal government contracts, following NIST Risk Management Framework procedures and guidance mandated under FISMA. Key job duties including specifying and documenting security control requirements, supporting security control assessments, and working with development and implementation team members to ensure that all security requirements are adequately addressed. The Security Officer is an integral contributor to project operations, developing a detailed understanding of applications, services, technologies, and operating environments used to support contact center and/or business process outsourcing operations. Applicable domains include cloud computing (infrastructure-, platform-, and software-as-a-service offerings) and conventional data center environments and both on-site and work-from-home staffing models. The Security Officer is responsible for identifying relevant security and privacy standards and regulations applicable to systems under development or in operation and helps ensure compliance with those standards and regulations. Some travel (less than 25%) may be required.

Key Responsibilities

Key responsibilities include:
  • Analyze systems, data, and operating environments to determine appropriate security controls
  • Produce key authorization package documentation, including System Security Plans, Contingency Plans, Security Test Plans, Plans of Action and Milestones, Privacy Impact Assessments, and related artifacts
  • Review system architecture and system design documentation to identify security-relevant aspects of systems and solutions and accurately reflect that information in security documentation
  • Work closely with project team members to make sure that applicable security requirements are incorporated in systems and solutions deployed for the project
  • Participate in business, technical, and security reviews of the solution to explain selected security and privacy controls
  • Perform initial and ongoing risk assessments of the system
  • Perform compliance checking, reporting, and oversight as part of continuous monitoring activities
  • Resolve any issues causing delays and/or problems on the project
  • Support deliverable development and provides regular status reporting to client
  • Perform all duties as assigned within Cognosante policy and procedures
  • Complete other tasks as assigned

Required Qualifications
  • Minimum 5 years relevant experience
  • Bachelor's Degree or equivalent experience
  • Strong technical knowledge of networks, operating systems, and n-tier applications
  • Experience performing risk management framework and system authorization tasks in a FISMA (i.e., federal government agency) setting
  • Familiarity with NIST standards and guidance including FIPS 199, FIPS 200, and the 800 series of Special Publications

Candidates that do not meet the required qualifications will not be considered.

Additional Minimum Qualifications
  • Excellent organizational, interpersonal, verbal, and written communication skills
  • Ability to work effectively as part of an integrated project team, while also taking ownership of assigned tasks to successfully achieve explicit delivery dates and milestones
  • Ability to perform comfortably in a fast-paced, deadline-oriented work environment
  • Ability to successfully execute many complex tasks simultaneously

Preferred Qualifications
  • Relevant security certifications such as CISSP, SSCP, CAP, or CISA
  • Formal education or professional experience in information assurance, information security management, or security operations
  • Familiarity with government standards and policies related to cloud computing such as the Federal Risk and Authorization Management Program (FedRAMP)
  • Prior experience performing in the role of an information security officer/information systems security officer (ISO/ISSO) on a federal government contract
  • Experience securing systems or environments that process personally identifiable information (PII) or protected health information (PHI)
  • Experience deploying and securing cloud-based applications
  • Experience working with online security tools such as RSA Archer, eMASS, SecureInfo RMS, or CSAM

More jobs in Falls Church, Virginia

General Business
about 13 hours ago

Cherokee Nation Businesses, LLC
about 16 hours ago

about 16 hours ago

More jobs in Other

less than a minute ago

Wsfs Financial
3 minutes ago

Schreiber Foods
3 minutes ago

Schreiber Foods