Position Description:

• Lead audit initiatives to include tracking of external/internal audit request, observations, and walkthroughs.
• Conduct assessments, identify weaknesses, provide recommendations, and lead organization to close open audit findings from internal and external auditors.
• Perform IT audit assessments to include review of IT controls, testing, validation, and evaluations of risk level.
• Lead FFMIA and FISCAM related activities such as evaluating Access, Security, Configuration Management, Segregation of Duties, Contingency, and Business Application controls.
• Assist in the development of process improvement and procedures.
• Analyze software systems and document requirements per FIAR methodology.
• Recommend remediation and fix actions to close out audit findings.
• Monitor, track and obtain accurate and complete PBC request from internal and external auditors.
• Understand Federal Cyber Security processes and Risk Management Framework (RMF)
• Use of FISCAM control techniques and audit procedures
• Provide consultation on audit risk and compliance best practices and principles to network protocols, architectures, equipment, services, standards, and technology.
• Author documentation containing evaluation results and recommendations, product application guidelines, troubleshooting procedures, system schematics/diagrams, process diagrams, and others as required.
• Effectively communicate with program and project personnel conveying expertise in a format that can be understood and is accepted by all personnel.
• Assist with ongoing implementation of SAF/FM initiatives to include Identity, Credential, and Access Management (ICAM), Configuration Management Database/Enterprise Integration (CMDB/EI), System Information and Event Management (SIEM) and System Security.

Requirements:

• Knowledge and experience with OSD FIAR audit readiness requirements desired.
• Understands audit processes to include audit observations, walkthroughs, and coordination of audit meetings to include service providers
• Knowledge of SOC 1 Reports with understanding of Complementary User Entity Controls (CUEC)
• Minimum of 4 years of audit, accounting, or financial and management advisory services experience. Proficient knowledge of GAAP, GAAS, federal regulations, guidelines, standards and concepts, or other relevant industry practices pertaining to the engagement.
• Knowledge of application, database, and applicable Security Technical Implementation Guides (STIGs)
• Knowledge of ACAS, eMASS and DISA enclaves as service providers.
• Strong understanding of Oracle HR systems and ability to interpret SQL queries.
• Knowledge of system-oriented audit experience (FFMIA, FISCAM, USSGL, SFIS, FFMSR, FASAB, OMB Circular A-123 and IT NFR) with two years’ experience required.
• Experienced in the implementation of DoD and Federal security and IA requirements as outlined in DoDI 8500.2, and NIST 800-53
• Strong RMF and FISCAM experience
• Strong understanding of systems engineering; database administration; and/or application development Information Security consulting experience with demonstrated leadership skills desired
• Experience with DoD Ports, Protocols, and Services (PPS), PKI, and Information Assurance Vulnerability Management (IAVM) policies and standards desired.

Additional Information: Must obtain and maintain a Secret level security clearance Must maintain DOD 8570 required certification, CompTIA Security+ or equivalent Must be able to work onsite as needed at government or contractor facility locations Company Benefits: Competitive health care package, vision, and dental, training expense, competitive PTO and Holidays.   3 Squared Technology Group is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.   Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

Job Description: Provide oversight of applicable vendor and/or Agency processes, methodologies, and tools to minimize risk and validate the applicable requirements, standards and best practices are being followed on the technical aspects of the project. Assist in defining and developing enterprise-wide IT project/program management practices, governance standards, processes, and metrics. Provide support, coordination and governance on Agency policies, procedures, and best practices to help implement and maintain project quality standards Compiles metrics relating to IT project attributes such as risks, impact and issues and adherence to defined processes. Responsibilities include maintenance of internal documentation library, providing and/or coordinating tasks with the team, special documentation services as required, and oversight of special projects. Perform technical reviews and assessments of vendor and Agency tasks, deliverables, and work products, including providing recommendations for risk mitigation and acceptance. Monitor the execution aspects of the projects and the project activities of the vendor(s) to provide input and guidance on the efficiencies. Review all project documents and project environments to evaluate completeness and accuracy of technical requirements from a project execution perspective to determine whether the standards and best practices are incorporated into the system development process. Perform assessments and review all technical documents such as System Designs, Technical Specification, Project Plans and other documentation to meet expected system requirements. Review design and architectural assessments and identify corrective actions, if necessary. Perform code and software development reviews, as appropriate, and identify correction actions, if necessary. Review vendor data conversion and implementation plans to verify and identify any risks and/or recommendations. Assist PPMO Project Manager with producing status reports on project quality assurance items to report to the Executive Steering Committee and Management.   Skills Required: Must possess extensive knowledge and expertise in project/program management, portfolio management methodologies and tools. Strong analytical, technical, skills to perform reviews and oversight for the large IT projects Sound technical skills and knowledge on Web development, architecture and technology. Proficient knowledge on System Integration, web services, data warehouse and relational databases. Proficient knowledge on Software Development methodologies such as adaptive (agile) as well as predictive (waterfall) methodologies. Successfully engage in multiple initiatives simultaneously (e.g., may work on different projects at the same time) Self-starter that can work independently and not rely on State or other team members for direction Ability to work cooperatively within and among different teams Excellent verbal and written communication skills and the ability to interact professionally with a diverse group (e.g., executives, managers, and subject matter experts) High proficiency using development tools High proficiency using Microsoft Project, MS Office products (including Word, Excel, Outlook, PowerPoint)   Skills Preferred: Experience with project management tools, methods, and best practices such as those defined by the Project Management Body of Knowledge (PMBOK). Experience with MS Team Foundation Server (TFS) Experience with SharePoint Experience with Visio Project Management tools   Experience Required: 5 years of Project Management and Technical Analyst work experience in Medicaid, Children’s Health Insurance Program (CHIP) business areas or the healthcare industry 3 years of experience working in Software Development for Web applications, Web Services, Data Warehouse and/or System Integration projects 3 years of work experience working in IV&V or Oversight of projects   Experience Preferred: Experience with CMS modularity projects such as Medicaid Management Information Systems (MMIS) systems Work experience with Medicaid Information Technology Architecture (MITA) and CMS certification Work experience on COTS and SaaS projects Work experience with data conversions and data warehouse projects Work experience with security requirements and/or testing   Education Required: Bachelor’s degree from an accredited four-year college or university in fields related to the position or equivalent work experience   Education Preferred: Certification in PMP (PMI) Certification (for Developer/Architect/Data Analyst/Data Engineer Roles)   Additional Information: This position is an on-sight position. No remote work is allowed. This position has the possibility of converting to merit. Position does not offer sponsorship. Candidate must be either a United States citizen or a current Green Card holder.

Job requirements here in details

Senior Auditor

POSITION DESCRIPTION: Supervise project staff, provide technical guidance on work assignments, independently perform major segments of engagement, act as liaison between project staff and project manager, and perform assigned tasks related to the engagement. The Senior Auditor will support the client's overall effort to become FIAR compliant. Responsibilities:

• Review and evaluate computer-based systems, audit general and application controls in complex information technology environments and perform other duties relevant to the engagement.
• Analyze legacy systems for compliance to OSD FIAR Guidance
• Analyze software systems and document requirements per FIAR methodology.
• Conduct assessments and Identify weaknesses
• Propose/test/implement solutions
• Coordinate efforts with financial statement audit resources and other integrated process teams focused on improving client's back-office operations including contracting, supply chain/asset management, and human resources
• Participate in FISCAM related activities such as evaluating Access, Security, Configuration Management, Segregation of Duties, Contingency, and Business Application controls.
• Assist in presentations within required review and approval processes.
• Assist with “assertion” packages (provide assurance it works) for any system changes.
• Assist program and project personnel in the Financial Management Process within life cycle management of specified systems.
• Analyze and verify requirements for completeness, consistency, comprehensibility, feasibility and conformity to standards for procedures, guides, templates and forms.
• Effectively communicate with program and project personnel conveying expertise in a format that can be understood and is accepted by all personnel.
• Extensive working knowledge of NIST 800-53 and DoD information system security guidance, processes, and methodologies required.
• Prepare and deliver reports, recommendations, or alternatives that address existing and potential trouble areas in financial systems across the organization.
• Position requires the ability to pass and maintain a Security Clearance.

 Requirements:  Formal Education & Certification:

• Bachelor's degree in accounting or other technical field from an accredited college or university with at least 24 semester hours in accounting.
• Continuing Professional Education in accordance with the Yellow Book.
• Minimum of 4 years of audit, accounting, or financial and management advisory services experience. Proficient knowledge of GAAP, GAAS, federal regulations, guidelines, standards and concepts, or other relevant industry practices pertaining to the engagement.

 Knowledge & Experience

• Knowledge of system-oriented audit experience (BLUE-BOOK, FISCAM, FISMA) with two

years’ experience required.

• Knowledge of System Implementation Audit with two years’ experience required.
• Demonstrated knowledge of Microsoft Office Software Suite products required.

• Extensive practical knowledge in importing data for use in report software, spreadsheets,

graphs, and flow charts required.

• Experience working in a team-oriented, collaborative environment required.
• Excellent understanding of organizational goals and objectives desired.

• Must currently possess or be able to obtain a SECRET security clearance

Personal Attributes

• Good project management skills.
• Excellent analytical, mathematical, and creative problem-solving skills.
• Excellent listening, interpersonal, written, and oral communication skills.
• Logical and efficient, with keen attention to detail.
• Ability to conduct research into systems issues and products as required.
• Ability to communicate ideas in both technical and user-friendly language.
• Highly self-motivated and directed.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Strong customer service orientation.

Working Conditions:

• Normal working hours will be an eight (8) hour day, five (5) days per week (Monday – Friday 8AM-5PM).
• Occasional work support during other than normal hours (i.e., evening and weekend to meet deadlines).
• Sitting for extended periods of time.
• Dexterity of hands and fingers to operate a computer keyboard or mouse, and to handle other computer components.
• Lifting and transporting of moderately heavy objects, such as computers and peripherals.
• Sitting for extended periods of time.

Job Title: EDI Specialist Location: ONSITE, Montgomery, AL Position Description: Works in the Bureau of Information Technology (IT) of the Alabama Department of Public Health (ADPH) supporting the Promoting Interoperability (PI) project. This position main objective is to develop, coordinate, implement, and lead all EDI-related developments for data exchange between the state public health lab and public health partners. They are responsible for gathering requirements, analyzing and designing specifications used for enhancements and extensions in EDI applications, interfaces, and mappings. They coordinate all EDI testing, and on-boarding. Additionally, the EDI specialist serves as the primary link between ADPH and any data-trading partners. The EDI specialist's day-to-day responsibilities include establishing contact with trading partners, analyzing the data exchanged with any partners, observing data records to record any errors, and correcting any failures. EDI specialists work with employees at all levels of their organization to support accurate, proper data exchanges within the organization. They assist with any testing to observe and interpret messages received and offer updates to their supervisor. Skills Required: 3 Squared Technology Group is seeking candidate who are experienced and knowledgeable in the below as well as someone who can come in and hit the ground running. The customer is very busy and does not have time to train candidates. •Knowledge of personal computer hardware and related equipment. •Rhapsody Integration Engine v.6+ • Experience with HL7 messages/specifications. • Experience with JavaScript. • Ability to establish and maintain effective working relationships with public health managers, and disease surveillance staff as well as other public health trading partners. • Experience with Oracle SQL: Develop reports and adhoc queries using SQL. • Ability to make good judgments in demanding situations • Ability to react to frequent changes in duties and volume of work. • Ability to manage multiple tasks with ease and efficiency. • XML • MS/ Oracle SQL Experience Required: Any combination of training and experience equivalent to: Graduation from an accredited twoyear college or university. One to two years of experience in systems and programming. Working knowledge of EDI translation software, Integration Engines, JavaScript and MS SQL Education Required: Graduation from an accredited two-year college or university with major course work in computer science, engineering, or closely related field. Additional Information: This job is 100% onsite -No remote work will be considered. Company Benefits: Competitive health care package, vision, and dental, training expense, competitive PTO and Holidays. 3 Squared Technology Group is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Cybersecurity Analyst

BMx FoS · Montgomery, Alabama

Job Title: Cybersecurity Analyst  Location: Maxwell AFB, Gunter Annex, Montgomery, AL  Job Summary: The Cybersecurity Analyst will support the operation and maintenance of enterprise-level Air Force aircraft communications, equipment maintenance, and training simulation systems. The applicant will perform technical cybersecurity activities including vulnerability scanning and Security Technical Information Guidelines (STIG) validation. Responsibilities:

• Serves as cybersecurity technical advisor to the Program Manager and Technical Lead
• Prepares detailed reports and other documentation used to communicate and remediate system and network vulnerabilities
• Conducts vulnerability analysis to validate system compliance with established STIGs
• Tracks, verifies, and validates STIG compliance and vulnerability resolutions and mitigations
• Reviews all technical change proposals to determine security relevance
• Participants in technical interchange meetings, design sessions, and unit testing efforts
• Helps foster a collaborative, team-based environment, sharing standard methodologies, and building positive relationships

Required Abilities/Experience:

• 5+ years related technical cybersecurity experience including STIG validation and vulnerability scanning
• Experience with DoD and Air Force cybersecurity policy and practices and National Institute of Standards and Technology (NIST) standards
• Experience with or training in Checkmarx Static Application Security Testing (CxSAST)
• Experience or knowledge of networks, system components, system protocols, COTS technology, and software development
• Self-driven with the ability to manage workload without direct supervision
• Ability to anticipate potential problems and act to minimize their impact

Desired Abilities/Experience:

• Familiarity with agile development methodologies, tools, and processes in an operational environment
• Experience executing within a customer-centric environment
• Excellent verbal and written communication skills

Minimum Education: Bachelors with 5 years’ IT experience Job Stipulations: Must obtain and maintain a Secret level security clearance Must possess and maintain an active CISSP certification Must be able to work onsite as needed at government or contractor facility locations Must be compliant with DOD vaccination policies  Physical Requirements: Prolonged periods of sitting at a desk and working on a computer Company Benefits: Competitive health care package, vision, and dental, training expense, competitive PTO and Holidays. 3 Squared Technology Group is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.