Cybersecurity Risk and Compliance Consultant
Vervic IncUnited States1 day ago
Full-timeInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Title: Cybersecurity Risk and Compliance Consultant
Location: Huntsville, AL
POSITION OVERVIEW
The Cybersecurity Risk and Compliance Consultant responsible for conducting
Cybersecurity gap assessments and ongoing consulting with our clients daily in
Huntsville, Alabama. The Cybersecurity Risk and Compliance Consultant should be
familiar with multiple security frameworks such as National Institute of Standards (NIST
800-171), Risk Management Framework (RMF), Cybersecurity Framework (CSF), CIS
Critical Security Controls (CIS Controls), Defense Federal Acquisition Regulation
Supplement (DFARS), and Cybersecurity Maturity Model Certification (CMMC). In this
position, you will conduct gap assessments through interviews and asking questions to
determine the state of an environment while capturing evidence and artifacts to support
the assessment results and effectively measure our client's security posture and
compliance.
Primary Duties
● Conduct Cybersecurity gap assessments and provide resulting reports
● Conduct Cybersecurity consulting engagements to assist with and partner on
clients' POA&M remediation efforts
● Manage and execute project-level tasks and milestones
● Educate clients on information security and applicable control requirements
● Baseline existing risks, exposure, framework, and compliance levels
● Advise on risk mitigation and remediation plans
Required Qualifications
● SOC (Security Operations Center) knowledge and understanding of services
within
● 1 or more (1+) years of experience in the information security field
● Experience leading information security engagements with a preference for
DFARS, NIST, and CMMC assessments, as well as reporting
● Experience authoring cybersecurity policies, and procedures (to include Incident
response, business continuity, disaster recovery, and more)
● One (1) or more of the following: Certified CMMC Professional (CCP), Certified
CMMC Assessor (CCA), Certified Information Systems Security Professional
(CISSP), Certified Information Security Manager (CISM), Certified Information
Systems Auditor (CISA), Security+, or equivalent certification
● Good time management, project management and problem-solving skills
● A desire to take on roles of increasing responsibility including defining services,
managing teams, and coordinating resources
● Integrity: Ethical and respectful to clients and team
● Grit: Ability to self-motivate, self-manage, and meet deadlines when faced with
competing priorities
● Customer-centric: Understand that partnership with our clients is a "win-win"
scenario
● Selfless: Understand that when one team member succeeds, we all succeed
● Ability to review security architecture and advise on security requirements
EOE
Location: Huntsville, AL
POSITION OVERVIEW
The Cybersecurity Risk and Compliance Consultant responsible for conducting
Cybersecurity gap assessments and ongoing consulting with our clients daily in
Huntsville, Alabama. The Cybersecurity Risk and Compliance Consultant should be
familiar with multiple security frameworks such as National Institute of Standards (NIST
800-171), Risk Management Framework (RMF), Cybersecurity Framework (CSF), CIS
Critical Security Controls (CIS Controls), Defense Federal Acquisition Regulation
Supplement (DFARS), and Cybersecurity Maturity Model Certification (CMMC). In this
position, you will conduct gap assessments through interviews and asking questions to
determine the state of an environment while capturing evidence and artifacts to support
the assessment results and effectively measure our client's security posture and
compliance.
Primary Duties
● Conduct Cybersecurity gap assessments and provide resulting reports
● Conduct Cybersecurity consulting engagements to assist with and partner on
clients' POA&M remediation efforts
● Manage and execute project-level tasks and milestones
● Educate clients on information security and applicable control requirements
● Baseline existing risks, exposure, framework, and compliance levels
● Advise on risk mitigation and remediation plans
Required Qualifications
● SOC (Security Operations Center) knowledge and understanding of services
within
● 1 or more (1+) years of experience in the information security field
● Experience leading information security engagements with a preference for
DFARS, NIST, and CMMC assessments, as well as reporting
● Experience authoring cybersecurity policies, and procedures (to include Incident
response, business continuity, disaster recovery, and more)
● One (1) or more of the following: Certified CMMC Professional (CCP), Certified
CMMC Assessor (CCA), Certified Information Systems Security Professional
(CISSP), Certified Information Security Manager (CISM), Certified Information
Systems Auditor (CISA), Security+, or equivalent certification
● Good time management, project management and problem-solving skills
● A desire to take on roles of increasing responsibility including defining services,
managing teams, and coordinating resources
● Integrity: Ethical and respectful to clients and team
● Grit: Ability to self-motivate, self-manage, and meet deadlines when faced with
competing priorities
● Customer-centric: Understand that partnership with our clients is a "win-win"
scenario
● Selfless: Understand that when one team member succeeds, we all succeed
● Ability to review security architecture and advise on security requirements
EOE
Key Skills
Ranked by relevanceReady to apply?
Join Vervic Inc and take your career to the next level!
Application takes less than 5 minutes