Cyber Assessment Manager | Remote Opportunity

Job Overview

Join our esteemed organization as a Manager, Cyber Assessment within our Enterprise Security Services team. This remote opportunity allows you to engage in a variety of critical responsibilities focused on advancing information security practices across diverse technology projects.

Key Responsibilities

• Conduct thorough information security risk assessments for technology initiatives, leveraging both industry-standard and proprietary control frameworks.
• Execute comprehensive assessments through vendor reviews, security requirement definitions, and facilitation of security testing.
• Implement active and passive testing methodologies to rigorously evaluate security controls.
• Provide expert guidance to project teams on compensating control alternatives when security requirements are not achieved.
• Serve as the primary liaison between IT project teams and Cyber Security departments to effectively allocate security resources and fulfill project timelines.
• Review and validate evidence to finalize corrective action plans, ensuring alignment with control objectives.
• Stay informed on emerging trends, tools, and techniques in security assessment, maintaining meticulous records of evidence.
• Perform vendor security assessments, enhancing processes, evaluating controls, and developing security requirements.
• Communicate and monitor remediation plans with vendors and IT teams, advising on necessary mitigating or compensating controls.
• Collaborate with IT and business function representatives to synchronize project priorities with IT Risk and Security resource planning.
• Act as a subject matter expert in various IT security domains, including access control, cryptography, and monitoring.
• Manage small projects, oversee deadlines, and contribute to staffing decisions while providing coaching and support to junior team members.
  
  

Required Skills

• Strong command of security principles, IT security controls, network security, and cloud security concepts.
• Familiarity with control frameworks such as NIST, ISO, HITRUST, and PCI.
• Proven experience with penetration testing and scanning tools, including Qualys, Nessus, Metasploit, and Burp.
• Exceptional communication, problem-solving, and analytical skills.
• Ability to mentor and positively influence junior team members.
  
  

Qualifications

• Minimum of five years of relevant experience in cyber security risk assessments and control reviews, utilizing frameworks such as NIST 800-53, NIST 800-171, FedRAMP, or CMMC.
• A bachelor’s degree from an accredited institution is preferred; certifications like CISSP or CISA are advantageous.
• Experience with both active and passive assessments.
  
  

Career Growth Opportunities

At our organization, we prioritize your professional development and offer a wealth of opportunities for career advancement within a supportive and vibrant environment.

Company Culture And Values

We pride ourselves on an inclusive culture that fosters innovation, individual growth, and community support. Our commitment to diversity ensures that all qualified applicants receive equal consideration.

Compensation And Benefits

We offer a competitive salary along with a comprehensive benefits package that includes medical and dental coverage, vision plans, disability and life insurance, 401(k) plans, and generous personal time off to promote a healthy work-life balance.

How To Apply

If you are enthusiastic about this role, we encourage you to apply as soon as possible. Applications will be reviewed on a rolling basis, and we look forward to welcoming you to our team.

Employment Type: Full-Time