Everforth

Everforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar

IT - Cyber Security Specialist IV

Location

Arkansas

Posted

2 days ago

Salary

$75 - $85 / hour

Seniority

Senior

Job Description

IT - Cyber Security Specialist IV

Everforth

Title: IT - Cyber Security Specialist IV Job Description: Job#: 3039262 Location: Home, Arkansas (Teleworker) Pay Range: $75 - $85 per hour Employee Type: Contract Role Overview An Information System Security Officer (ISSO) is sought to join a team supporting the ClaimsCore Program. This role involves overseeing activities related to system security authorization, compliance, and continuous monitoring for a federal environment. The ISSO will be instrumental in ensuring secure and compliant systems across both legacy integrations and modern cloud-based platforms, supporting major cybersecurity initiatives for the Centers for Medicare & Medicaid Services (CMS). Key Responsibilities - Serve as the ISSO for the ClaimsCore Program, ensuring compliance with FISMA Moderate, FedRAMP Moderate, and CMS ARS 5.1 security controls. - Oversee the Authorization to Operate (ATO) process, including the preparation and maintenance of all Security Authorization (SA) and Certification & Accreditation (C&A) documentation. - Conduct risk and vulnerability assessments, track remediation activities, and ensure zero open Critical/High vulnerabilities at go-live. - Manage security incidents, ensuring notification within 1 hour, and coordinate with stakeholders on mitigation and reporting. - Develop, maintain, and update security policies, procedures, SSPs, SOPs, and other RMF documentation. - Support annual and ad hoc federal security assessments, including CSRAP, CFO, and OMB A123 reviews. - Manage POA&M entries, validate mitigation strategies, and support audit responses. - Perform continuous monitoring activities, analyze security reports, and recommend corrective actions. - Collaborate with engineering, operations, and program management teams to embed security into system design. - Provide subject matter expertise on NIST 800-53 controls, FedRAMP requirements, and CMS-specific security processes. - Ensure all system changes follow proper security impact analysis procedures prior to deployment. - Support contractor, government, and third-party security assessments. Required Qualifications Education & Experience: - Minimum of 8 years of experience with a BS/BA degree; or - Minimum of 6 years of experience with an MS/MA degree; or - Minimum of 3 years of experience with a PhD. Technical Skills & Experience: - Demonstrated experience as an ISSO or similar security lead on federal programs following FISMA, NIST RMF, and FedRAMP requirements. - Hands-on experience developing and reviewing RMF documentation (SSP, SAR, POA&M, CMP, Incident Response Plan, Contingency Plan, etc.). - Experience conducting or supporting risk assessments, vulnerability analysis, and security audits. - Familiarity with CMS ARS 5.1, CMS ATO processes, and federal cybersecurity reporting requirements. - Experience supporting incident response processes, including rapid notification and coordination. - Strong understanding of vulnerability management tools and processes (e.g., Nessus, Tenable.sc, Qualys). - Ability to communicate effectively with both technical and non-technical stakeholders. - U.S. Citizenship is required. Preferred Qualifications - Relevant certifications such as CISSP, CISM, Security+, CEH, or CAP. - Previous experience supporting CMS, federal healthcare programs, or large federal IT modernization efforts. - Experience in hybrid environments involving legacy systems and cloud platforms (AWS/Azure) subject to FedRAMP Moderate controls. - Familiarity with continuous monitoring processes and automation tools. - Experience supporting external audits such as CSRAP, CFO, and OMB A-123. - Knowledge of secure software development practices and DevSecOps concepts. - Experience with enterprise-scale government contractors or large federal IT programs. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.

Related Categories

Related Job Pages

More Security Engineer Jobs

IT - Information Assurance - Security Engineer III

Everforth

Everforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar

IT - Information Assurance - Security Engineer III Location: United States Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Job Description: Job#: 3039270 Job Description: IT - Information Assurance/Security Engineer III Location: Home, Arkansas (Teleworker) Role Overview We are seeking a Senior Security Analyst to join a team of skilled professionals. The ideal candidate will play a pivotal role in safeguarding and strengthening the security posture of the ClaimsCore platform by performing comprehensive security analysis, vulnerability assessments, and compliance monitoring. This position will support ongoing system maintenance, platform enhancements, and major modernization activities by providing expert security guidance, reviewing configurations, and ensuring alignment with enterprise and federal security standards. The Senior Security Analyst will contribute directly to the reliability, resilience, and integrity of systems supporting federal health mission partners. Key Responsibilities - Performing security analysis, vulnerability assessments, and compliance monitoring for the ClaimsCore platform. - Reviewing, interpreting, and validating security scan results from tools such as Tenable, Qualys, or similar enterprise vulnerability platforms. - Prioritizing remediation efforts and tracking vulnerability resolution against established SLA timelines. - Coordinating with development, operations, and infrastructure teams to ensure timely remediation and secure configuration management. - Supporting internal and external audit activities, including evidence collection, control validation, and implementation of corrective actions. - Reviewing system and application security configurations to ensure alignment with enterprise standards, NIST guidelines, and Zero Trust principles. - Providing actionable security recommendations to technical teams and participating in design reviews for secure implementation of new features or system updates. - Monitoring compliance with security policies, procedures, and regulatory requirements, and escalating deviations as appropriate. - Assisting in the development and continuous improvement of security processes, documentation, and reporting dashboards. - Supporting incident response activities by analyzing potential vulnerabilities, misconfigurations, and threat vectors relevant to the ClaimsCore environment. Required Qualifications Education: A Bachelor of Science or Bachelor of Arts degree with 5 years of experience, a Master of Science or Master of Arts degree with 3 years of experience, or a PhD with 0 years of experience is required. Experience: 5-8+ years of experience in security analysis, vulnerability management, or cybersecurity operations in a large enterprise or federal environment. Experience supporting compliance, audit activities, or regulatory requirements for federal or large enterprise systems is also required. Technical Skills: - Hands-on experience with vulnerability scanning platforms (e.g., Tenable.sc, Tenable Nessus, Qualys) and an understanding of CVE, CVSS, and vulnerability lifecycle processes. - Demonstrated ability to analyze scan data, identify false positives, and translate technical findings into clear, actionable remediation tasks. - Familiarity with security frameworks and standards including NIST 800-53, NIST CSF, RMF, and CIS benchmarks. - A strong understanding of secure configuration principles for operating systems, cloud platforms, and application environments. - Effective communication skills (verbal and written) with both technical and non-technical stakeholders. - U.S. Citizenship may be required based on project needs. Preferred Qualifications - Security-related certifications such as Security+, CySA+, GSEC, CEH, CISSP, CISM, or equivalent. - Experience with cloud environments (AWS, Azure, or GCP) and associated security services or baseline configurations. - Experience supporting large modernization efforts or legacy-to-cloud migrations. - Knowledge of SIEM platforms, security automation workflows, and log analysis. - Experience working in Agile or DevSecOps environments and providing security input throughout SDLC processes. - Familiarity with federal healthcare systems or related compliance requirements. - Experience generating security reports and presenting findings to leadership or program stakeholders. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228. Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems. Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Similar Jobs - Information Security Engineer - IAM - Information Security Engineer - NC - Information Security Engineer - NC - Information Security Engineer - TX - LEAD INFORMATION SECURITY ENGINEER

Arkansas
$52 - $62 / hour
Pearson VUE logo

Information Security Specialist

Pearson VUE

The potential of every professional. The promise of every industry.

Full TimeRemoteTeam 1,001-5,000Since 1994H1B No Sponsor

• Serve as the primary security point of contact for assigned clients, owning day-to-day security communications, leading client discussions, creating client-facing reports, and responding to ad-hoc security inquiries and escalations. • Liaise with program management, other functional areas within Pearson, clients, external security consultants and investigative firms as needed. • Conduct web monitoring services for assigned client including online investigation and cyber intelligence gathering. • Perform data forensics services for assigned client and conduct investigations related to data forensics. • Produce/provide reporting to assigned client for web monitoring and data forensics. • Provide internal and external consulting with regard to our information security policies, standards and procedures. • Respond to ad hoc client security requests in desired timeframes. • Conduct investigations related to candidate misconduct incidents. • Review testing session videos in relation to candidate misconduct incident and produce reporting related to review. • Manages boilerplate library and ensures all security templates reflect Pearson VUE’s current practices and technology.

Minnesota
$70K - $80K / year
Full TimeRemoteTeam 10,001+H1B No Sponsor

• Lead the development, implementation, and continuous improvement of safety, health, and security, programs in compliance with company policies and all applicable regulatory requirements • Serve as the subject matter expert and primary point of contact for all safety, health, and security-related matters, partnering closely with operations, HR, Legal, Internal Audit, and external agencies • Conduct risk assessments, compliance audits, and security surveys to identify vulnerabilities, ensure policy adherence, and drive corrective actions that promote a safe and secure work environment • Analyze safety incidents, loss trends, and operational data; lead investigations, ensure accurate documentation and reporting, and develop actionable insights and metrics for leadership • Design and deliver safety and security training programs that increase awareness, strengthen compliance, and enhance employee engagement at all levels • Support operational teams by developing and implementing action plans that improve safety performance, reduce risk and loss, and ensure alignment with physical security and environmental standards • Participate in process reviews and job hazard analyses for new and existing operations to proactively mitigate risk and improve workplace safety • Develop and maintain reporting mechanisms to communicate safety performance, security initiatives, and key performance indicators to leadership • Build strong cross-functional relationships to drive a culture of safety, security, accountability, and continuous improvement across the organization • Ability to travel up to 85% of the time; must possess a REAL ID-compliant driver's license or passport to comply with federal travel regulations • Familiarity and ability to comply with TSA security procedures • Ability to travel domestically via road, rail and air as required for the role and pursuant to company travel and expense requirements.

Oklahoma
Full TimeRemoteTeam 10,001+H1B No Sponsor

• Lead the development, implementation, and continuous improvement of safety, health, and security programs in compliance with company policies and all applicable regulatory requirements • Serve as the subject matter expert and primary point of contact for all safety, health, and security-related matters, partnering closely with operations, HR, Legal, Internal Audit, and external agencies • Conduct risk assessments, compliance audits, and security surveys to identify vulnerabilities, ensure policy adherence, and drive corrective actions that promote a safe and secure work environment • Analyze safety incidents, loss trends, and operational data; lead investigations, ensure accurate documentation and reporting, and develop actionable insights and metrics for leadership • Design and deliver safety and security training programs that increase awareness, strengthen compliance, and enhance employee engagement at all levels • Support operational teams by developing and implementing action plans that improve safety performance, reduce risk and loss, and ensure alignment with physical security and environmental standards • Participate in process reviews and job hazard analyses for new and existing operations to proactively mitigate risk and improve workplace safety • Develop and maintain reporting mechanisms to communicate safety performance, security initiatives, and key performance indicators to leadership • Build strong cross-functional relationships to drive a culture of safety, security, accountability, and continuous improvement across the organization • Ability to travel up to 75%, must possess a REAL ID-compliant driver's license or passport to comply with federal travel regulations

Texas