CyberSecurity Risk Management Specialist (Top Secret Clearance Required)

As a digitally-focused management consultancy, we do more than strategy. From strategy and design to architecture and development, we deploy senior, cross-functional teams to work hip-to-hip in the trenches with client teams.

Founded in 2003, Intevity (previously Twin Technologies) is a full service, digitally-focused management consultancy based in Boston, MA with remote offices and employees throughout the eastern and central US (Baltimore, Chicago, D.C., New York). Intevity focuses on both Commercial and Public Sector clients, with deep expertise in retail, software, and government. Intevity has key vendor partnerships with Adobe, AWS, and Salesforce.

We work on all phases of projects, from early discovery and design to strategy to execution. We are known for our vulnerability-based culture, high levels of craftsmanship, innovation, and trust; being able to truly connect with the needs and spot the real reasons why an organization is being held back from achieving their goals.

We specialize in digital transformation in retail, software, and government. We align audiences, optimize processes and build custom, cutting-edge experiences on leading platforms—all while helping businesses increase velocity while reducing organizational risk.

As an agile company, Intevity is committed to continually growing and evolving with the market to provide an environment where creativity, leadership, mentoring, planning, and resources are in place to achieve our shared goals.

As our CyberSecurity Risk Management Specialist, you will consistently challenge team members to proactively and collectively architect secure IaaS and PaaS solutions within multiple Cloud Service Provider's (CSP). Candidates should have effective task management skills and the ability to communicate effectively. They will be required to prepare, categorize, implement, assess, and monitor systems within accordance with NIST SP 800-53 and DISA CC SRG standards.

Major Duties & Responsibilities

Subject Matter Expert (SME) in data entry and processes for eMASS, SNAP, PPSM, STIG viewer, etc

Develop System Security Plan (SSP), Security Assessment Report (SAR) and POA&Ms to guide Product Owners through key processes for submitting IATT, ATO, and ATO-C packages

Support the evaluation of security controls against the IaaS and PaaS offerings provided

Support the creation and management of a new security risk management process in order to approve and authorize new capabilities and monitor the output of the process

Conduct cyber security assessments using security controls per NAP 14.1C and 14.2-C relating to cyber security and training (NIST 800 series, DISA CC SRG, FISMA, and FIPS 199 and 200)

• Currently holds TS clearance
• 90% Remote (with a home office in DC, MD, VA area)

Candidate must have an active Security + Certification and at least one security certification such as Certified Information SecurityManagement (CISM), Certified Risk Information Security Control (CRISC), or Certified Information Systems Security Professional (CISSP)

Experience working in AWS, Azure, or GCP to secure IaaS, PaaS, and SaaS offerings

Subject matter expertise in conducting security risk assessments for on-prem, hybrid cloud, and cloud systems

Highly proficient in knowledge of respective industry best practices (e.g., NIST, ISO, COBIT, OWASP, ITIL)

Knowledge of risk management policies, methods, standards, processes, governance models, and industry-standard risk analysis approaches

Experienced with vulnerability scanning tools and technologies such as Prisma Cloud, ACAS, Tenable.IO, Harbor, Windows Defender, etc

Familiar with Cloud based security monitoring tools such as Azure Monitor, Windows Defender, AWS CloudWatch, AWS CloudTrail, AWS Guard Duty, New Relic, Prisma Cloud, Prometheus, etc

Profound ability to collaborate well with internal and external stakeholders

Strong MS Office skills along with strong verbal and written communication skills

Prior experience in the management of technology infrastructure is preferred

Knowledge of the DoD is strongly preferred

Intevity offers a competitive and comprehensive employee compensation and benefits package that includes base salary ($115,000 - $135.000), medical, dental, and vision insurance, long and short-term disability insurance, life insurance, 401k program with company match, and an open PTO plan.

Intevity is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity and expression, national origin, disability, or protected veteran status.