Cyber Security Audit and Compliance Specialist - SME

Apply

Job Type

Full-time

Cyber Security Audit and Compliance Specialist - SME

Would you like to live and work in a community outside the hustle and bustle of a large metropolitan area but yet close enough to all the big city amenities? The quaint, coastal town of Elizabeth City, NC with plenty of southern charm will make you feel at home in no time! With its unique location in Northeastern North Carolina, it is a short drive full of waterways and woodlands to the beaches of the Outer Banks, the nearby big cities of Hampton Roads, and the entertainment and recreation opportunities of the Virginia Peninsula. Also, Richmond, VA and Raleigh/Durham, NC are three hours away and the Washington, DC metropolitan area is four. Come live the Southern coastal life and experience the satisfaction of supporting the vital and life-saving work of the US Coast Guard.

• Knowledge of existing security products, authorized vulnerability management policies, and procedures.
• Evaluate security requirements and conduct feasibility studies to examine software and hardware requirements, administration costs, and data information flow.
• Assist with the Security Controls Auditor in validating security controls and the Risk Management Framework.
• Develop and maintain cybersecurity policies to ensure compliance with requirements.
• Plan and schedule cybersecurity project activities, monitor, and report on project progress.
• Work with customers to implement system security measures, assist with cybersecurity plans and documentation, and provide technical guidance and training.
• Analyze system vulnerability management, remediation solutions, and develop necessary POAMs.
• Collaborate with internal and/or external security teams regarding audits and security controls.
• Evaluate, test, monitor, and maintain information security policies, procedures, and systems such as hardware, firmware, and software.
• Ensure security design, controls, and procedures align with information security standards and effectively mitigate risk.
• Identify security violations, determine causes, and implement procedures to prevent future incidents.

Education:

• Bachelor's or associate degree in Computer Science, Math, Information Technology, Engineering, or a related field, or at minimum IT Certification.
• Six (6) years' experience is equivalent to three (3) years of education.

Certification:

• This position requires IAM-II Level certification or equivalent.

• Six (6) years of experience in information security, cybersecurity, security programs, or compliance assurance.
• Six (6) years of experience with Security Information and Event Management (SIEM).
• Six (6) years of experience with the Risk Management Framework.
• SECRET Clearance is required.
• Basic knowledge of Active Directory, UNIX, Windows, and Relational Databases.
• Knowledge of NIST publications and the accreditation and authorization process.