No further applications will be accepted for this offer, we have other related job offers that you can find below.

Governance, Risk, and Compliance - Washington, United States - ShorePoint

ShorePoint

Verified Company

Washington, United States

1 month ago

Posted by:

Mark Lane

beBee recruiter

Description

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data.

ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers.

We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth.

We are committed to the belief that our team members do their best work when they are happy and well cared for.

In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers.

Highlighted benefits offered:

18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we're looking for:

What you'll be doing:

Develop, implement, and oversee governance, risk, and compliance strategies to ensure the security and integrity of information systems.
Manage risk assessment and mitigation activities, ensuring compliance with federal regulations and industry standards, including the Risk Management Framework (RMF).
Oversee audit management processes, ensuring thorough preparation, execution, and followup on audit findings.
Collaborate with various teams to develop and enforce GRC policies, procedures, and controls.
Provide expertise in the areas of risk management, compliance frameworks, and security policies.
Prepare detailed reports and presentations for stakeholders, outlining risk assessment findings and compliance statuses.
Ensure continuous monitoring and improvement of security controls and compliance measures.
Act as a liaison between different departments to ensure cohesive and comprehensive GRC efforts.
Stay updated with the latest regulations, standards, and best practices in cybersecurity and GRC.

What you need to know:

Extensive knowledge of governance, risk, and compliance frameworks and principles.
Strong understanding of cybersecurity principles, cloud security, and risk management processes.
Proven track record in audit management and utilizing GRC tools.
Ability to develop and enforce GRC policies, procedures, and controls.
Strong written and verbal communication skills, with the ability to produce detailed reports and presentations.
Ability to work both independently and as part of a team, with strong leadership and collaboration skills.

Must have's:

Minimum of 5 years of relevant experience in GRC and cybersecurity program management.
Experience with cloud security and federal risk management frameworks (RMF).
Shall possess one or more of the following certifications: Project Management Professional (PMP), Certified ScrumMaster (CSM) and PMI Agile Certified Practitioner (PMI-ACP)
Ability to obtain and maintain customer required security clearance.

**Beneficial to have the following: - Certified Authorization Professional (CAP)