Cyber Security Engineer
Indexed description
KEY RESPONSIBILITIES
Security Architecture & Design
- Lead security reviews for integrations and ongoing compliance.
- Ensure secure ETL/ELT, CDC, API, and cross-module data exchanges.
- In coordination with BITS, validate cloud security architecture (Azure/AWS), encryption, segmentation, and Zero Trust alignment.
- Participate in Architecture Review Board (ASRB) security evaluations.
Compliance & Certification
- Ensure alignment with security standards such as CMSARC AMPE, CMS MARS-E, HIPAA, NIST, and State security standards.
- Support CMS certification, assist in SSA Accreditation and Triennial Audits, Operational Readiness Reviews (ORR) and security authorization to operate (ATO) documentation.
- Review and validate vendor security deliverables.
- Apply AI security principles by evaluating AI-enabled systems for compliance with organizational security controls, assessing algorithmic risk, and integrating AI-related security findings into broader risk, governance, and assurance frameworks to ensure safe and responsible use of AI technologies
Risk & Control Management
- In coordination with BITS, conduct risk assessments and control gap analysis.
- Review and contribute to SSPs, POA&Ms, and vulnerability remediation plans.
- Provide executive-level reporting on security posture and risk exposure.
Data Protection & Privacy
- In coordination with BITS, ensure encryption at rest and in transit.
- In coordination with BITS, validate RBAC/IAM models, least privilege enforcement, and MFA.
- Review data masking rules, PHI/PII protections, logging, and audit controls.
Operational Security
- Support penetration testing, vulnerability scanning, and remediation oversight.
- Oversee application security scanning activities—including SAST, DAST, and SCA—by conducting thorough vulnerability analysis, tracking remediation progress, and ensuring integration of findings into risk management and compliance reporting.
- In coordination with BITS, validate DR/BCP security posture and incident response readiness.
- In coordination with BITS, ensure Security Information and Event Management (SIEM) integration, monitoring, and secure logging practices.
REQUIRED Qualifications
- Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience).
- 7+ years information security experience.
- Knowledge of CMS ARC AMPE, CMS MARS-E, HIPAA Security Rule, and NIST SP.
- Experience in securing cloud-based or on-prem Information systems.
- Experience supporting federal certification and ATO processes.
Preferred Qualifications
- Knowledge of State Medicaid or healthcare systems.
- Familiarity with CMS MITA framework.
- Experience with Azure and/or AWS cloud security controls.
- Professional certifications (CISSP, CISM, CCSP).
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search