Jobs · Information Technology · Maryland

IT Cybersecurity Specialist

Centers for Medicare & Medicaid Services · Baltimore County, MD · 1 wk ago
On-siteInformation TechnologyFull-time

About the role

This position is located in the Department of Health & Human Services (HHS), Centers for Medicare & Medicaid Services (CMS), Center for Consumer Information and Insurance Oversight (CCIIO), Marketplace Innovation and Technology Group (MITG).

Responsibilities

  • Provide expertise and advice to leadership and stakeholders regarding security and privacy laws, statutes, regulations, policies and guidance to ensure system security and compliance while achieving CMS business objectives.
  • Provide authoritative guidance related to agency information technology security program.
  • Recognize, develop, and spearhead implementation of cybersecurity and privacy best practices relative to the management of IT systems.
  • Serve as the Senior Information Security Officer and operational lead.
  • Manage compliance for the Authority to Operate (ATO) or Authority to Connect (ATC) processes.

Requirements

You must be a U.S. Citizen or National to apply for this position.

You will be subject to a background and suitability investigation.

Selective Service: Males born after December 31, 1959, must be registered or exempt from Selection Service - http://www.sss.gov.

Qualifications

ALL QUALIFICATION REQUIREMENTS MUST BE MET BY THE CLOSING DATE OF THIS ANNOUNCEMENT.

Your resume (limited to no more than 2 pages) must include detailed information as it relates to the responsibilities and specialized experience for this position. Evidence of copying and pasting directly from the vacancy announcement without clearly documenting supplemental information to describe your experience will result in an ineligible rating.

Basic Requirement

  • You must have IT-related experience demonstrating each of the four competencies listed below:
  • Attention to Detail - is thorough when performing work and conscientious about attending to detail;
  • Customer Service - Works with clients and customers to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services;
  • Oral Communication - Expresses information to individuals or groups effectively, taking into account the audience and nature of the information; listens to others, attends to nonverbal cues, and responds appropriately;
  • Problem Solving - identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations.

Specialized Experience

  • Providing policy or technical guidance on the development, implementation, and operations oversight of cybersecurity programs;
  • Monitoring or analyzing cybersecurity program operations to assess security risks, vulnerabilities, threats, or incidents impacting healthcare IT systems and data, including researching and providing mitigation to resolve the vulnerabilities;
  • Providing analytic or technical advice to support policy or business decisions in the areas of cybersecurity and privacy for the operation of health care IT systems;
  • Conducting technical research to ensure IT systems are within industry standards.

Certification

In order to qualify for the GS-15, you must demonstrate in your resume at least one year (52 weeks) of qualifying specialized experience equivalent to the GS-14 grade level in the Federal government, obtained in either the private or public sector, to include:

  • Providing policy or technical guidance on the development, implementation, and operations oversight of cybersecurity programs;
  • Monitoring or analyzing cybersecurity program operations to assess security risks, vulnerabilities, threats, or incidents impacting healthcare IT systems and data, including researching and providing mitigation to resolve the vulnerabilities;
  • Providing analytic or technical advice to support policy or business decisions in the areas of cybersecurity and privacy for the operation of health care IT systems;
  • Conducting technical research to ensure IT systems are within industry standards.

This position requires the following certification requirement be met in addition to the qualification requirements listed above: Certification in at least one of the following specialties: Certified Information Systems Security Professional (CISSP); CompTIA Advanced Security Practitioner (CASP); or Global Information Assurance Certification Security Essentials (GSEC) . YOU MUST ATTACH PROOF OF CERTIFICATE.

Similar jobs