We're Hiring!

Senior Systems Analyst

Responsible for identifying systems vulnerabilities, vulnerability mitigation and patching and application troubleshooting when issues from applied vulnerabilities cause instability or outages. Specific requirements include:

· Identifies high risk changes before they are applied and engages vendors to safely mitigate an issue with minimal customer impact

· Parses Splunk reports and develops approach for mitigating findings

· Documents technical processes and procedures

· Thorough understanding of Windows Server operating system for both 2012 R2 and 2019

· Experience with process migration and cloud transitions

Minimum technical requirements:

· Application and operating system patching

· CVE investigation & remediation testing

· Active Directory GPO experience

· Experience working with Splunk/Nessus/Qualys/Symantec/Bigfix data and reports

· Security+ certified or equivalent Security certificate

· Windows Environment

Bonus experience:

· Powershell scripting experience

· Scripting / coding experience (windows/linux)

· PKI/encryption experience

· RHCE (RedHat Linux Certified Engineer) 

· MCSE (Microsoft Certified Systems Engineer) certification

· IPv6

Security Analyst

An experienced IT system security specialist with over 5 years of diversified expertise, predominantly in the areas of conducting security audits to identify and eliminate vulnerabilities, aligning security architecture plans and processes with security standards and business goals. Hands on experience in developing and testing security framework for cloud-based software with a track record of success in driving network defense strategies.

Areas of Expertise

Vulnerability Management | NIST Risk Management Framework | NIST Standards | Dashboarding | Cloud Computing | FedRAMP | ATO | ATU | FISMA | FIPS 199 | Cloud Infrastructure Management | POA&MS | Stakeholder Engagement | System Security Plans (SSP) | Contingency Plans (CP) | Security Impact Analysis (SIA) | Project Management | Application, and Server Monitoring Tools (Nessus, Qualys, Burp) | Machine and Network Virtualization | Active Directory Identity Management | Intermediate Python and Bash Scripting | Data security | Security Program Development and Implementation | Critical Thinking | Analytical Aptitude | Detail Focused 

Specific Requirements

· Expertise in maintaining data security and protecting data as well as managing process migration and transition to a cloud environment.

· Well conversant in access control, encryption, configuration management, vulnerability management, incident response, software development lifecycle.

· Possess a thorough knowledge of security groups and permissions in the cloud infrastructure.

· Strengths in suggesting technical solutions for complex business issues by coordinating and bridging the gap between technical teams and non-technical client requirements.

· Holds a thorough knowledge of cloud and cyber security principles, concepts, policy, and regulations and capable of identifying risks in IT security systems whilst working closely with technical experts to resolve security issues.

IT Training and Certifications Desired

· Cloud Architect Pathway Program:

· ISA 1002 CompTIA Security+ | CLO 1005 Amazon Web Services (AWS) Certified Solutions Architect – Associate.

· Cisco Certified Network Associate (CCNA R&S).

· CompTIA Network+.

· CompTIA Security+

508 Compliance Software Testing and Quality Assurance

The Section 508 Tester (508 Tester) will be responsible for supporting Live Assistance (LA) Workstream Leads in testing voice/voicebots and other contact center channel applications (e.g., chat/chatbots, Agent Desktop, E-Mail) for compliance with Section 508 Accessibility standards, ensuring workstream deliverables are Section 508 compliance. The 508 Tester will:

· Assess and determine which Section 508 provisions are applicable to project deliverables 

· Define, document, and execute Section 508 compliance test cases

· Draft and/or Contribute to the preparation of Section 508 compliance enterprise life-cycle artifacts

· Conduct Section 508 compliance demonstrations using IRS accessibility tools (e.g., JAWS, Dragon, Zoom Text). 

· Manage test cases and testing using the IRS Enterprise Life-Cycle Management (ELM) tool

Skills/Experience: Mid to Senior Level - The 508 Tester must have at least seven years of quality assurance/testing experience. The 508 Tester must have knowledge of accessibility tools and at least two years of experience testing with several of Section 508 accessibility tools used at the IRS including JAWS, ZoomText, Dragon Naturally Speaking, Object Inspector, Talkback and Voiceover. Must have knowledge and understanding of Web Content Accessibility Guidelines (WCAG) 2.0. Knowledge of IBM ELM/RQM is highly desirable.