Job Title: GRC Analyst Location: Houston, TX, 77002 (Onsite 4x per week) Department: Information Security / Risk..., support, and enhance our cybersecurity governance, risk management, and compliance programs. As a key member of the security...
assessment. Coordinates the work of contracted certified public accounting firms to conduct financial examinations... of organizations. Communicates observations, recommendations, and proposed remediation strategies to program participants and agency...
Officer (ISSO) position will support the Information System Security Manager (ISSM) in developing, maintaining and overseeing... and Information Systems Security Manager (ISSM); support and perform self-inspection reviews; and assist with conducting comprehensive...
(CISA) or Certified Information Security Manager (CISM) Demonstrated knowledge and experience in IT risk and controls...Job Family: IT Risk & Controls Consulting Travel Required: Up to 10% Clearance Required: Active Top Secret SCI...
activities under the guidance and oversight of the Information System Security Manager (ISSM) on assigned information systems... and Technology (NIST) Risk Management Framework (RMF), remediating security control deficiencies, assessing and approving change...
(CRISC), Certified Information Security Manager (CISM), OSCP, OSCE, GWAPT, or other security certifications desired... controls to demonstrate the potential adverse impact caused by a threat actor Experience with implementing red team assessment...
understanding of National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), security architecture..., and coordinate remediation efforts. Work with Information System Security Officers (ISSOs), system owners, security assessors...
for someone with a strong attention to detail and a passion for helping organizations meet regulatory and security standards. Our ideal candidate... to assessment readiness. This is a full-time position that is fully remote. Due to the nature of our work...
such as Elasticsearch, Logstash, and Kibana (ELK), Solarwinds Security Event Manager, and Splunk. Knowledge and experience with NIST... Special Publications 800-18 Guide for Developing Security Plans for Federal Information Systems and SP 800-37 Rev. 2 Risk...
Security Certified Practitioner (SSCP), or CISM(Certified Information Security Manager), or CISA(Certified-Information-Systems... security incidents. You will play a key role in the Incident Response Team (IRT) overseeing, validating and documenting...
privacy risk assessment, analysis, mitigation, and remediation. Conduct related ongoing privacy compliance monitoring..., standards, and procedures are up-to-date, accurate, and within risk tolerance levels. Perform initial and periodic information...
privacy risk assessment, analysis, mitigation, and remediation. Conduct related ongoing privacy compliance monitoring..., standards, and procedures are up-to-date, accurate, and within risk tolerance levels. Perform initial and periodic information...
existence and adequacy of the internal controls in place to achieve established objectives and minimize risk exposure to the... the audit, including developing the risk assessment, high-level process flows, planning memo, brainstorm decks, risk...