Cyber Security Specialist

Role Summary

The CIS System Hardening Compliance Specialist is a practical, execution-focused position within the Cyber Hygiene team. This role centers on overseeing and improving adherence to CIS benchmarks across on-prem, cloud, hybrid, and containerized environments, leveraging tools such as Qualys.

The specialist converts technical CIS assessment results into straightforward, actionable recommendations, helps platform and application owners interpret compliance requirements, and monitors remediation progress. The role involves close collaboration with infrastructure, cloud, endpoint, and application teams, as well as senior security stakeholders, in large and complex enterprise settings.

Key Responsibilities

• Manage CIS compliance findings through their full lifecycle — from discovery and analysis to prioritization, remediation tracking, validation, and closure
• Track and report CIS compliance posture using Qualys and other assessment tools
• Evaluate compliance across servers, endpoints, network infrastructure, cloud environments, and containers
• Review and verify findings to eliminate false positives and confirm real compliance gaps
• Provide clear, practical remediation guidance to technical and application teams
• Monitor remediation efforts, escalate overdue issues, and deliver regular status reporting
• Produce audit-ready evidence and compliance reporting for risk and governance needs
• Partner with platform and application owners to clarify CIS requirements and support remediation efforts
• Help enhance the effectiveness, accuracy, and coverage of CIS monitoring processes
• Assist incident response teams when compliance weaknesses introduce immediate risk

Required Skills & Experience

• 3–5 years’ experience in system hardening, infrastructure security, compliance monitoring, or security operations
• Hands-on familiarity with CIS benchmarks and compliance scanning tools (ideally Qualys)
• Strong ability to interpret scan data, document deviations, and explain technical findings
• Experience working collaboratively with infrastructure, cloud, and application teams
• Understanding of audit support and compliance evidence requirements

Preferred Qualifications

• Relevant certifications in security, compliance, or system hardening
• Background in regulated or large-scale enterprise environments
• Knowledge of cloud security and endpoint management solutions
• Experience with enterprise compliance and vulnerability platforms

Success Traits

• Structured and detail-driven approach to compliance oversight
• Analytical thinker with a focus on risk accuracy
• Effective communicator who can translate technical issues into business context
• Collaborative and persistent when driving cross-team compliance
• Comfortable operating in complex, regulated environments
• Proactive in improving compliance processes and reporting standards

for more Information and to apply share your resume to me at [email protected]