W2 Only
Looking for a Cybersecurity professional to perform security assessments for new and existing IT Systems within the organization.
Overview:
- Pull intake requests from a backlog queue
- Engage with internal customers
- Meet with the project teams to discuss and document project scope and impacted solution components
- Validate data types and classifications
- Deliver self-attestation exemption forms and self-assessment questionnaires to project teams
- Manage workflow for handoff to the Validation Advisor teams
Skills:
- Strong Communication skills, ability to speak to and document risks and possible solutions, and clearly articulate these to the business in laymen’s terms if necessary.
- Ability to speak to security in groups meetings as needed.
- 5-10 years of experience with information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.) & some regulatory compliance background is a plus.
- GRC tool experience and Issues Governance processes is desired.
- Working knowledge or understanding of following technologies/protocols/methodologies:
- Physical and Virtual Infrastructure
- Network Security
- Cloud Computing (AWS, Azure, Google, Private)
- Containerization
- API and Microservices
- Static & Dynamic Code Scans
- Prisma
- OpenStack, ACI, Openshift, Docker
- Software Defined Network
- Virtualization
Education:
- BS or MA/MS in Computer Science, Information Security, or a related field is preferred OR equivalent work experience with the preferred certifications outlined below:
- Certified Information Systems Security Professional (CISSP), Certified Cloud Information Professional (CCSP), Certified Information Security Manager (CISM), and/or Certified Risk and Information Systems Control (CRISC), Security+, Network+, etc.
Benefits:
- Benefits: Medical, Dental, Vision, 401K (provided minimum eligibility hours are met)
QUALIFICATION/ LICENSURE:
Work Authorization : US Citizen
Preferred years of experience : 6+ Years