$r. InfoSec/ $ubject Matter $pecialist w/ Juniper & Remedy experience

 

Trawick & Associates (www.trawick.com), founded in 1985, a Woman-Owned small business, was recently ranked number 102 in the exclusive list of the "500 Fastest Growing Small Businesses" published by INC. magazine.

 





National Navy Medical Center (NNMC): TRAWICK has been awarded a contract by the Department of the Navy to provide Information Security Operations (INFOSEC) services in support of the National Naval Medical Center (NNMC) Bethesda, MD. Services include firewall management; intrusion detection monitoring; virtual private network (VPN) implementation and monitoring; network security certification support; and incident investigation, analysis and reporting. The contract continues to expand TRAWICK's support to Department of Defense (DoD) customers in the critical area of information security.

 

 

Currently, we are seeking driven IT professionals as yourself for the following full-time, salaried position at the National Navy Medical Center in Bethesda, MD (as a Trawick employee, no 3rd party is involved!):

 

 * *  Subject Matter Specialist -

Information Security

at the National Navy Medical Center

in Bethesda, MD * *







 

NNMC (= the work site) is a Medical Center with approximately 5000 users and 17 remote medical and dental treatment facilities and other remote users.

Working hours:

The prime time is 6:30AM to 5:00PM (3 people will split coverage Monday through Friday).

On call status involved, as needed.

SKILLS AND EXPERIENCE REQUIRED:
Juniper Netscreen and Checkpoint Firewall expertise a must. 

Remedy, Windows NT/2000/2003, MacAfee Intruvert IDS/IPS monitoring & Alerts, Forensic Tools, Penetration Testing Tools, Vulnerability Assessment Tools, and VPN Management expertise required. 

Broad familiarity with computer architectures and application troubleshooting. 

Broad familiarity with computer architectures.

Supervisory experience a must.

Attention to detail and organizational skills are necessary.

Ability to communicate accurately in both oral and written form a must.

The ideal candidate has excellent customer service skills and great work ethics.

ACTIVE SECRET Security Clearance is a MUST (or, at least, the candidate MUST BE "clearable")!

EDUCATION AND TRAINING REQUIREMENTS:
BS or equivalent in related field.
8+ years operational experience in a similar environment.

 

List Specific Duties of Position:

As the Flagship of Navy Medicine, the National Naval Medical Center (NNMC) seeks to maximize operational readiness and keep the uniformed services fit to fight while delivering quality primary and tertiary care in a customer-focused environment.  NNMC also serves as a teaching hospital, providing distinguished graduate/undergraduate medical education, professional education and research. 

The Center is recognized as a national center of excellence for ambulatory care, critical care and women's health. NNMC is a medical community leader in the development of innovations in healthcare services and informatics. NNMC has emphasized a robust communication capability to ensure adequate, appropriate and secure information for decision-making. 

As Health Insurance Portability and Accountability Act (HIPAA) compliance continues to shape Information Management/Information Technology (IM/IT) functionality, data integrity, and accessibility, National Naval Medical Center requires support for information security operations for its internal and external customers.

 

NNMC is a Medical Center with approximately 5000 users and 17 remote medical and dental treatment facilities and other remote users.

The following are typical workload figures for the INFOSEC branch:

Intrusion Detection: 35,000 to 40,000 events logged per day.

Firewall: 25 changes per month.

Security Investigations:  6 per month.

Software Evaluations: 4 per month

Virtual Private Network (VPN):  6 changes per month

 

MAIN DUTIES (areas):
- Firewall Management;
- Intrusion Detection;
- VPN (Virtual Private Network) Management/Integration with PKI (Public Key Infrastructure);
- DMZ Strategies Support;
- Helpdesk Support.

 

SPECIFIC DUTIES:

Firewall Management

a.  Creating new and administering existing firewall rules for NNMC applications in accordance with NNMC firewall modification process, noting the specific mapping of ports in and out.

b.  Analyzing firewall rules on an average 25 times monthly for changes related to NIPRNET Enclave policy, Department of Defense (DoD), and Department of Navy (DoN) Firewall policies, any malicious experience, and changing customer requirements.

c.  Coordinating and managing firewall rules related to National Capital Area partners in accordance with Memorandums of Understanding (MOUs) or Service Level Agreements (SLAs) that state the requirements of each partner.

d.  Firewall management shall be under the cognizance of the Information Systems Security Manager (ISSM) and will include monthly reports.  The monthly reports shall contain detailed findings of reported or discovered incidents, including and not limited to, a specific list of vulnerabilities.

e.  Managing the current configuration and participation in design planning for firewall changes and Demilitarized Zone (DMZ). Design planning, firewall implementation and management shall also include extranets in accordance with DoD policy and constraints of the HIPAA compliance requirements.

f. Establishing capabilities for 7 X 24 firewall alert notifications. Remote access to firewall logs shall be via VPN encryption and conform to NNMC Information Security policies.

g.  Supporting a mixed environment of Netscreen and Checkpoint firewalls => must have strong experience with both Checkpoint and Netscreen!!!

The key word here is experience, not familiar.  NNMC pretty much has upgraded all firewalls to Netscreens.  So we need someone who has a few years experience managing Netscreen firewalls as well as sifting through "syslogs" generated by firewalls, IDs, and Proxy.  Though not specifically stated by NNMC, Linux or Unix experience are now a requirement.  At NNMC, we have very large firewall logs that can only be searched through with Linux/Unix.  There may also be a necessity for this position to write Linux/Unix shell code or PERL scripts.

h.  Provide firewall and intrusion detection support to the NNMC phone system and the on-site Private Branch Exchange (PBX) contractor(s).

 

Intrusion Detection

a.  Intrusion detection planning, analysis, design, monitoring, new technology evaluation/insertion, and maintenance.  This individual will provide back up coverage to the local government service member.

b.  Establish and maintain 7 X 24 intrusion detection monitoring whereby alerts or after-hour alarms will trigger a response by contractor personnel for action.  This alert system must be optimized to reduce the number of false positives and help ensure actual intrusions are identified.

c.  Develop documentation related to intrusion detection analysis for NNMC; establish as-needed analysis for any sites obtaining intrusion detection services from NNMC. This must include archiving of log files for the purposes of ongoing audits.

d.  Suggest and recommend methods of reducing vulnerabilities as it relates to intrusion detection trends.

e.  Provide security support for the NNMC test lab.

 

VPN Management/Integration with PKI

Increasing e-health/e-business requirements suggest a transition toward extranets and online transactions. These transactions require authentication, non-repudiation, and a host of privacy and confidentiality requirements including HIPAA requirements.  DoD requirements to meet online transactions include public key infrastructure (PKI) requirements, with deadlines for implementation beginning as early as the end of FY 2004.  Encryption requirements for healthcare provider communications require the use of either dedicated lines or VPNs. Since dedicated lines are neither practical nor affordable given the number of NNMC users, Virtual Private Network (VPN) management and bulk encryption shall be requirements for meeting DoD and HIPAA guidelines. As such, NNMC requires the services of a contractor to provide the following capabilities related to VPN management and PKI implementation; however modifications should be performed without notifying the ISSM:

a.  Administer NNMC?s existing VPNs including but not limited to products provided by both Netscreen and Exceedium XIO.

b.  Include gateway configurations and means to audit accountability of VPN use.  The contractor shall prepare and submit a monthly report that shall include but not be limited to the number of new, modified and deleted accounts

c.  Identify and work with National Capital Region users such as CHCS to provide and ascertain that NNMC information security policies are adhered to.

d.  Work with Firewall and Intrusion Detection to offer maximum security for NNMC while allowing extranet capabilities for business partnering.

e.  Recommend changes and/or provide suggestions to improve VPN management and PKI for all NNMC personnel where appropriate. These recommendations and suggestions shall be submitted to the ISSM in writing.  Incorporate suggestions with configuration management project assistance for organization-wide implementation.

 

DMZ Support

DMZ strategies ? The contractor will analyze the current NNMC configuration to create a more secure environment while keeping the same level of support for all remote connections and commands accessing the NIPRNET via the NNMC connection. Selected NNMC servers, such as the NNMC public Web-server, will be recommended for movement outside the Firewall to protect NNMC from intrusion.  Specific functions shall include, but are not limited to the following, however no action should be taken without verbal or written authorization from the ISSM:

a.  Validate ports on each server that are identified as requiring filtering through a firewall.

b.  Identify access lists, that control which inside systems can establish connections to the outside networks.

c.  Evaluate and recommend appropriate PKI, Secure Socket Layer (SSL) and VPN encryption to servers to ensure DON and HIPAA requirements are completed

 

Help Desk Support

The Contractor shall be proficient in using Remedy help desk ticketing software to log, monitor, document, and close INFOSEC trouble tickets.  All tickets shall be fully documented, including troubleshooting methods employed, root cause analysis, and resolution implemented.  Where problems are recurring, the Contractor shall assist the government in development of standard operating procedures that will identify the step-by-step procedures for resolving the problem.






For this position, the ideal candidate MUST be able to successfully pass a Drug Test and he/ she must have an active DoD Security Clearance (or be "clearable"). 

 

NOTE: To clarify the interview process: if an offer is extended to you (after two possible on-site interviews with our Management team and the NNMC manager) and you accept it, then you?ll become a full-time Trawick employee working at NNMC in Bethesda, MD.

 







 

? COMPENSATION:



? Competitive salary opportunity (up to high 80s per year)

? Full-time, salaried position (sorry, no hourly rate, 1099, no Corp to Corp)

? Generous benefits package including medical & dental insurance; paid holidays (10/year); paid vacation (80 hrs), personal, and sick leave (40 hrs); life insurance, long term disability insurance, tuition reimbursement; employee referral bonus program ($1,000.00); the opportunity to participate in 401(k) plan.

 

 

POC:

If you or someone you know is interested in this opportunity, please email the UPDATED resume, ALONG with specific salary requirements/ expectations for this position to ccomsuela@trawick.com (Subject line: SMS/ InfoSec # NNMC 03).

 

 

Website: www.trawick.com 

Trawick is an Equal Opportunity Employer M/F/D/V.