KEY RESPONSIBILITIES:
• Assess security controls based on NIST 800-53 standards.
• Conduct interviews, reviews, and testing to verify compliance.
• Proficient in developing and maintaining comprehensive security documentation, including:
o System Security Plans (SSPs),
o Security Assessment Report (SARs),
o Security Assessment Workbook (SAW) and
o Plan of Action & Milestones (POA&Ms)
• Support risk assessments and vulnerability analyses.
• Conduct system security control assessments for federal information systems, applications, and cloud environments
• Perform risk assessments and recommend actionable mitigation strategies to stakeholders.
• Create and update security documentation, including policies, procedures, and test plans.
• Collaborate with system owners, ISSOs, and IT teams to implement and document security requirements.
• Communicate findings, risks, and mitigation efforts to technical and non-technical stakeholders.
REQUIRED KNOWLEDGE & SKILLS:
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• 3-5+ years of experience in security compliance, risk management, or related fields, with strong knowledge on NIST SP 800-53, CMS MARS-E 2.2,
FedRAMP, HIPAA, PCI, State RAMP, SOC 2 Type II, and other relevant industry and government cyber security compliance standards and frameworks
• Ability to manage multiple tasks effectively while working independently and collaboratively.
ABILITIES:
• Ability to conduct independent security control assessments for federal systems and cloud environments.
• Skilled in performing detailed risk assessments and providing actionable mitigation strategies.
• Strong written and verbal communication skills, capable of collaborating effectively with stakeholders, including system owners, ISSOs, and IT teams.
• Demonstrated ability to manage multiple tasks effectively, both independently and in a team environment.
• Strong problem-solving and analytical abilities to address complex security challenges.
FOLLOWING INDUSTRY STANDARD CERTIFICATIONS ARE PREFERRED BUT NOT REQUIRED:
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• Certified Cloud Security Professional (CCSP)
Electrical Engineering Designer (Facilities) Location: Tulsa, OK | Bentonville, AR | Hybrid | Remote Reports To: Director of Electrical Engineering Team: Electrical Engineering Role Overview Cyntergy is seeking an experienced Electrical Engineering Designer to join our...
...About the job Data Entry Specialist - REMOTE WORK We are looking for Data Entry profiles to join our Talent Acquisition... ...easier: ~100% remote work. ~ Hardware setup for you to work from home. ~- Flexible hours - make your schedule. ~ Paid parental...
...As a Virtual Customer Care Specialist, you will be responsible for supporting customers and handling inquiries from the comfort of your home... ...generate new sales. learn full suite of products and services to serve customers effectively. work closely with warehouse to...
...Hair Stylist at Sport Clips summary: CVWalletExtranet.Domain.Entities.JobShortDescription *We are located between Bonefish Grill... ...Clips is the nation's leading men and boys' hair care franchise salon!*Get your PAYCHECK every FRIDAY *Our stylist are typically...
...where you can work from home at your own time doing 10 minute audits. About the Position: Type: Collaborating Physician - 1099 Location: Remote Opportunity Hours: Flexible Hours Rate of Reimbursement: $300 per Audit This is not a full-time position. This...