Lead Information Security Specialist - Owings Mills, MD (#0114)
Our client, a large healthcare insurance provider in the Mid-Atlantic region, is currently looking for a full-time Lead Information Security Specialist to work out of their Owings Mills, MD location.
Reporting to the Manager Information Security, Architecture & Planning, the Lead Information Security Specialist is accountable for a variety of tasks and deliverables, as listed below.
Support existing information security applications and infrastructure components. Work and collaborate other teams in the enterprise, or with customers (internal and external) on resolving access issues related to security functions, such as authentication, authorization, password management, account locks, user management, SSO/Federation, Role and Privilege assignments, etc. Work with the project managers to define realistic timelines for production issue resolutions. Troubleshoot issues across multiple applications and systems. Persist in fixing issues and supporting deployments during the maintenance window (around midnight). Apply creative thinking in problem solving and actively identifying opportunities for system improvements.
Develop code, scripts, and configuration/deployment instructions to implement designs and follow instruction of technical leads. Use best practices and patterns to ensure delivery of an enterprise grade solution that is scalable, extensible, and configurable. Use SQL optimization techniques, parallel processing techniques, asynchronous transactions, and other enterprise grade patterns. Perform thorough unit testing, code validation, and troubleshooting. Work with other technical teams in the organization such as Data Architecture, Portal and Integration. Work with the project managers to define realistic timelines for solution delivery. Deliver solutions in a timely manner and according to the agreed upon schedule.
Skill set should include: IBM TIM administration and workflow development, TAM administration and configuration, TFIM administration and configuration, LDAP, Unix, Active Directory, Java, EJB, JSP, JDBC, JMS, Kerberos, PKI, XML, WSDL, Web Services, Ant, Spring Framework.
DESIGN AND DOCUMENT:
Participate in brainstorming sessions for interpreting technical requirements into security solutions and designs that are consistent with the current information security architecture and with company security policies and guidelines. Create detailed documents using UML and similar diagramming methods, to be shared within and outside the team. Contribute to our library of design patterns, security standards, check lists, and other guiding artifacts. Establish and maintain coding standards, deployment standards, configuration management of security Web Services and Tivoli services.
Provide leadership to the implementation team by tracking tasks and detailed level delivery details. Track the implementation and report to the Project Manager. Work with the implementation team to develop estimates of time and effort. Lead joint design sessions with stakeholders, including Portal team, Data team, and other technical teams. Coordinate implementation with other teams, while maintaining clear communication channel and keeping the project on track. Lead less experienced staff members on their assignments. Mentor less experienced staff members on business knowledge, system details, and complex technical issues. Contribute to new ideas in technology, process and solutions of information security beneficial to the team and the enterprise.
This position is also subject to being "on call" for emergency situations requiring immediate resolution.
** IMPORTANT: Candidate MUST HAVE experience with Tivoli (TIM, TAM, TFIM), and 5+ years in IT security **
Required Experience, Skills and Abilities:
This position requires a BA/BS in computer science or related IT field or equivalent experience and at least 8 years of related experience of which at least 5 years must be in IT Security. Must have at least 1 year of experience leading less experienced team members. In addition:
? Demonstrated leadership skills. Experience with coaching, mentoring and providing feedback to associates as well as leading small teams of junior analysts.
? Strong written and verbal communication skills are necessary. Must be able to influence and work with a diverse team with different backgrounds and motivations.
? Proven ability to lead delivery of solutions according to schedule and budget constraints.
? Able to work in a fast passed environment, handle changing requirements, and perform under tight timelines.
? Must be a fast learner with a commitment to personal growth in the domain of Information Security.
? Experience in researching and introducing new technologies for better coding style, faster delivery, and enhanced performance.
? Must possess strong knowledge of information security systems including Access Management, Identity Management, LDAP, Role Based Access Control, HTTP Headers and Cookies, Encryption, SSL, Certificates, etc.
? Experienced in Web Services code development and testing, Object Oriented Design and coding methods, agile development, deployment scripting with tools like ANT or Perl, Tivoli Directory Integrator (TDI) scripting, Access Control List (ACL), and logging methods.
? Experienced in programming for relational databases, including SQL for Data Modification Language (DML), and Data Definition Language (DDL) and Queries. Familiar with communications protocols such as HTTP, TCP/IP, JMS, SSL, etc.
? Experienced with large and complex systems having multi-layered architectures and use of Software Development Lifecycle methodology.
? Knowledgeable in secure coding standards and security patterns for application and data level security.
? Skilled in Microsoft Office suite: Outlook, Word, Excel, Power Point
? MS in Computer Science
? Experience with some or all of the following: Unix, Linux, Tibco, WebSphere administration and tuning, Web Services Security, Oracle database administration, Firewall configuration, Intrusion Preventions Systems, and similar security devices.
Travel between company sites is required.
Interested and qualified candidates should apply immediately!!