Expert Cyber Security Architect - Contract to Hire
No SPONSORSHIP - NO OPT
EXPERT CYBER SECURITY ARCHITECT - Contract to Hire
This will be a contract to hire.
Position is 100% remote.
Job Description:
The Expert Cyber Risk Management Capability Assessor will assess the effectiveness and conduct risk assessments of cyber risk management capabilities, including policies, processes, and technical capabilities, leveraging enterprise cyber risk management requirement and control framework. In addition, they will have responsibilities to maintain the framework, harmonizing emerging regulations and cyber security frameworks to the framework, updating it and revising capability effectiveness criteria in collaboration with capability owners as needed.
Responsibilities
• Cyber Risk Management Capability Assessments: Conduct in-depth assessments of the effectiveness of cyber risk management capabilities within the organization.
• Gap Analysis: Identify gaps in cyber risk management capability effectiveness and provide recommendations for enhancing the organization's cyber risk management posture.
• Documentation & Reporting: Develop detailed reports and documentation on assessment findings, remediation plans, and effectiveness metrics.
• Stakeholder Collaboration: Work closely with cyber risk management, technology, and business partners to ensure that cyber risk management capabilities are effective.
• Compliance, Standards, and Regulatory Alignment: Ensure adherence to regulatory and industry standard requirements such as NIST 800-53, SOC 2, 23 NYCRR 500, NAIC Model Law, and HIPAA, by harmonizing those requirement sets to the enterprise cyber risk management requirement framework. As regulations and standards are introduced and updated, enhance and extend the framework.
Qualifications
Education: Bachelors degree in Cybersecurity, Information Security, Computer Science, or a related field.
Certifications (Preferred): CISSP, CISA, CISM, CRISC, CAP, Security+, or equivalent.
Experience: Minimum 5-8 years of experience in cyber security, compliance, cyber risk assessment, or security auditing.
Technical Expertise:
• Working knowledge of NIST 800-53, NIST 800-171, and FedRamp.
• Demonstrated experience assessing both on-premises and cloud-based cyber risk management controls (Azure and Oracle Cloud Infrastructure)
• Familiarity with technology management methodologies (DevOps, SAFe, ITIL)
• Expertise in multiple cyber risk management domains
• Understanding of cyber risk management oversight and administration processes, security architecture, technical security controls, and data protection strategies.
Apply tot his job
Apply To this Job
EXPERT CYBER SECURITY ARCHITECT - Contract to Hire
This will be a contract to hire.
Position is 100% remote.
Job Description:
The Expert Cyber Risk Management Capability Assessor will assess the effectiveness and conduct risk assessments of cyber risk management capabilities, including policies, processes, and technical capabilities, leveraging enterprise cyber risk management requirement and control framework. In addition, they will have responsibilities to maintain the framework, harmonizing emerging regulations and cyber security frameworks to the framework, updating it and revising capability effectiveness criteria in collaboration with capability owners as needed.
Responsibilities
• Cyber Risk Management Capability Assessments: Conduct in-depth assessments of the effectiveness of cyber risk management capabilities within the organization.
• Gap Analysis: Identify gaps in cyber risk management capability effectiveness and provide recommendations for enhancing the organization's cyber risk management posture.
• Documentation & Reporting: Develop detailed reports and documentation on assessment findings, remediation plans, and effectiveness metrics.
• Stakeholder Collaboration: Work closely with cyber risk management, technology, and business partners to ensure that cyber risk management capabilities are effective.
• Compliance, Standards, and Regulatory Alignment: Ensure adherence to regulatory and industry standard requirements such as NIST 800-53, SOC 2, 23 NYCRR 500, NAIC Model Law, and HIPAA, by harmonizing those requirement sets to the enterprise cyber risk management requirement framework. As regulations and standards are introduced and updated, enhance and extend the framework.
Qualifications
Education: Bachelors degree in Cybersecurity, Information Security, Computer Science, or a related field.
Certifications (Preferred): CISSP, CISA, CISM, CRISC, CAP, Security+, or equivalent.
Experience: Minimum 5-8 years of experience in cyber security, compliance, cyber risk assessment, or security auditing.
Technical Expertise:
• Working knowledge of NIST 800-53, NIST 800-171, and FedRamp.
• Demonstrated experience assessing both on-premises and cloud-based cyber risk management controls (Azure and Oracle Cloud Infrastructure)
• Familiarity with technology management methodologies (DevOps, SAFe, ITIL)
• Expertise in multiple cyber risk management domains
• Understanding of cyber risk management oversight and administration processes, security architecture, technical security controls, and data protection strategies.
Apply tot his job
Apply To this Job