MAXIMUS

Information Systems Security Lead

US-KY-Frankfort
2 weeks ago
Requisition ID
2017-26261
# of Openings
1
Job Function
Information Security
Job Schedule
Regular Full-Time

Project/Position Introduction

MAXIMUS is a leading operator of government health and human services programs and has partnered with state, federal and local governments to provide critical, high quality health and human service programs to a diverse array of communities. Operating under MAXIMUS’s founding mission of Helping Government Serve the People® since 1975, MAXIMUS Federal Services is entirely focused on helping government agencies run programs cost-effectively and serve program constituents with improved outcomes. By being a responsible steward for government programs, we help the federal government deliver on its promises through our people, process and technology. Our focus is always on outcomes and results that connect citizens more effectively with government services.

Overview

*Employment is contingent upon contract award.

 

The Information Technology Lead is responsible for establishing and maintaining a security management program to ensure that information assets are adequately protected as well as identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements.

Responsibilities

  • Serves as Chairperson of Project Security Advisory Committee.
  • Reports directly to the Project Manager on all matters related to Security and Confidentiality for the Project.
  • Responsible for developing and maintaining Security and Confidentiality Plan for the Project.
  • Responsible for ensuring the Disaster Prevention / Disaster Recovery and Business Resumption Plans are developed, maintained and validated for the Project.
  • Responsible for overseeing the Annual Risk Assessment and Analysis for the Project.
  • Responsible for reviewing all potential or actual security and / or confidentiality breaches and conducting Risk Assessment and Analysis to develop appropriate Risk Mitigation Plans.
  • Responsible for preparing and submitting for Project Manager approval all required notifications of suspected or actual breach of protection of beneficiary or confidential information or data.
  • Serves as the primary liaison with the Cabinet for Health and Family Services Information Security Officer on matters related to Security and Confidentiality
  • Responsible for coordinating with the Corporate Information Security Officer the incorporation of Corporate Security Policies and Procedures changes or additions into Project Security and Confidentiality Policies and Procedures
  • Responsible for the review and approval of all contract deliverables related to Security and Confidentiality for the Project
  • Maintains current knowledge of the federal and State rules and regulations related to Security and Confidentiality included in the KY Medicaid Assistance and Contact Center Services Contract.
  • Participates in seminars and symposiums related to federal and state rules and regulations relating to Security and Confidentiality, assuring that appropriate changes are incorporated into the Security and Confidentiality Policies and Procedures for the Project.
  • Maintains up to date knowledge of best practices related to Security and Confidentiality, assuring that Project Policies and Procedures are updated to incorporate appropriate practices.
  • Meets all standards established for this position as outlined in the attached performance criteria.
  • Performs other duties as may be assigned by management.

The Ideal Candidate will Possess the Following Additional Education and Experience

  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, Business Administration, Public Policy, Law or a related field and/or an advanced degree in a field related to information security
  • A minimum of five years’ experience in computing or related areas, with a focus on information security, technology, management and policy
  • Experience in the development and implementation of planning security policy, procedure/ and/or safeguards;
  • Extensive knowledge of security administration and computer security tools
  • Successful experience in retrieving, analyzing, reporting, addressing and/or tracking security intrusions and vulnerabilities
  • Demonstrated knowledge in systems design, development, documentation, testing, implementation and/or maintenance; demonstrated ability to work effectively with technical and non-technical managerial and professional staff
  • Experience in technology management or information security in both government and healthcare environments
  • Candidate must have achieved CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager).

EEO Statement

A committed and diverse workforce is our most important resource.

MAXIMUS is an Affirmative Action/Equal Opportunity Employer.

MAXIMUS provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.

Apply/Socialize

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.