Senior Cybersecurity Auditor - Remote
18 hours ago
Job description
Overview:
Please note that this position is contingent upon the successful award of a contract currently under bid.
Global in service but local in approach, Nisga'a Tek is committed to high-quality service to those who defend us. Nisga'a Tek ensures mission assurance and execution for customers and warfighters. Providing intelligence, IT, cyber security, training, logistics, administrative, acquisition, and background investigation services.
Summary:
The Senior Cybersecurity Auditor provides independent security assessment and compliance oversight in support of the Defense Logistics Agency (DLA) under the J6 Enterprise Technology Services (JETS) contract.
Responsibilities:
Essential Job Functions:
- Independently performs complex security analysis of classified and unclassified applications, systems, and enclaves for compliance with security requirements.
- Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations.
- Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks.
- Performs vulnerability and risk analysis and participates in a variety of computer security penetration studies.
- Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers.
- Recommends solutions to meet security requirements.
- Gathers and organizes technical information about an organization's mission goals and needs and makes recommendations to improve existing security posture.
- Provides enterprise-wide technical analysis and direction for problem definition, analysis and remediation for complex systems and enclaves.
- Provides workable recommendations and advice to client executive management on system improvements, optimization, and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC.
- Competent to work at the highest level of all phases of information systems auditing.
Qualifications:
Necessary Skills and Knowledge:
- Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks, databases, computer applications and IT frameworks.
- Knowledge and understanding of DOD security regulations, DISA Security Technical Implementation Guides
- Understanding of SCAP
- Knowledge of and proficiency with:
- VULNERATOR
- USCYBERCOM CTO Compliance Program
- Wireless vulnerability assessment
- Web Services (IIS, Apache, Proxy)
- Database (SQL Server, Oracle)
- Email Services (Exchange)
- Vulnerability Scans (NESSUS, SCCM)
- Knowledge of Phishing exercises
- Cloud Security
- Operational Technology
- Artificial Intelligence
- USB Detection
- Physical Security
- Familiarity with AUTOCHECKLIST Tool
- Strong analytical and problem-solving skills for resolving security issues.
- Strong skills implementing and configuring networks and networks components.
Minimum Qualifications:
- Minimum seven (7) years of IT experience
- Minimum five (5) years of cybersecurity experience
- Command Cyber Readiness Inspection certification or equivalent in at least one of the following areas:
- Nessus Scan Analysis
- Operating Systems (Windows, Unix)
- Boundary Defense) Network Policy, Router, Firewall)
- Internal Defense (L2 Switch, L3 Switch)
- DNS (Policy, BIND/Windows)
- HBSS (remote console, AV, ABM, PA HIPS, ePO)
- Traditional Security (Common, Basic, NCV, SCV)
- Wireless Communications (BES, Handhelds)
- Tenable Certified NESSUS Auditory
- Required to possess a DOD SECRET Clearance and be eligible for an IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) upon assignment.
- Required to be a DISA Risk Management Executive, Cyber Standards Branch Certified Command
- Cyber Readiness Inspection (CCRI) Team Lead and have a certification in penetration testing, such as:
- Licensed Penetration Tester (LPT)
- Certified Expert Penetration Tester (CEPT)
- Certified Ethical Hacker (CEH)
- Global Information Assurance Certification Penetration Tester (GPEN)
Preferred Qualifications:
- Bachelor's degree in a related field
Pay and Benefits
The annual salary range for this position is $100,000 - $170,000.
At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.
Similar jobs
VikingCloud es el socio confiable a quien se confía a más de cuatro millones de clientes para proporcionar la inteligencia predictiva y la ventaja competitiva necesaria para mantenerse un paso por adelante ante las interrupciones en seguridad e cumplimiento en sus negocios. · ...
1 week ago
Fortreum is a trusted leader in cloud and cybersecurity services, ranked in the Top 5 FedRAMP Third Party Assessment Organizations (3PAO). We provide independent, third-party and vendor-agnostic regulatory assessment and advisory services, coupled with advanced cybersecurity offe ...
3 days ago
+ As a reporting specialist, you will provide high-level operations support to the service delivery organization by working to assemble, format, and review time-sensitive and highly technical reports. · The ability to utilize Microsoft Word at an expert level is critical. In thi ...
1 month ago
· About the Role · The reporting specialist will provide high-level operations support to the service delivery organization by working to assemble, format, and review time-sensitive and highly technical reports. In this role, you will work closely with the Quality Review Special ...
3 days ago
Position Summary: · The GRC Manager will oversee the strategic direction, establishment/execution of objectives, and/or people management of the Security and Compliance function. The GRC Manager role will create and manage security compliance policies and procedures. The role wil ...
1 day ago
The Senior Director of Technology and Compliance will partner closely with executive leadership to integrate cybersecurity, · technology risk management and corporate compliance across all OSC Global operating companies. · This senior leadership role ensures that our technology-e ...
1 month ago
As an Information Security Auditor within the IS and Compliance team, you'll be responsible for safeguarding internal company data and client data through robust information security, compliance, and risk management programs. · ...
1 week ago
As an Information Security Auditor within the IS and Compliance team you'll be responsible for safeguarding internal company data and client data through robust information security compliance and risk management programs. · ...
1 week ago
The Community You Will Join: · The Security Assurance team at Airbnb focuses on Governance, Risk, and Compliance within the Information Security Organization, ensuring security controls are robust and aligned with our global commitments. We bridge the gap between engineering and ...
3 days ago
The Penetration Tester works to execute department activities and deliver high-quality security assessments to a diverse portfolio of high-profile clients. · ...
3 weeks ago
We are trusted by nearly 7 million families and more than 200 Fortune 500 companies who offer our service as an employee benefit. · ...
1 week ago
We are looking for a skilled and driven DIRECTOR OF VULNERABILITY MANAGEMENT to become a key member of our team. · As the subject matter expert (SME) across a global technology infrastructure that includes both legacy systems and modern cloud environments, you will lead the compa ...
1 week ago
The Cyber Security Engineer safeguards corporate and public cloud environments that host financial services platforms. This role monitors and evaluates threats to a cloud-hosted digital banking solution. · Develop and improve monitoring, reporting, and alerts to identify and addr ...
1 week ago
The Sui Foundation is seeking a security-focused individual contributor to support and execute security governance programs across the Foundation and its ecosystem. · This role will be responsible for coordinating and delivering cross-functional technology and security initiative ...
4 days ago
+Job summary · We are looking for an experienced Security & Compliance Lead to join our team. · +Qualifications7+ years of experience in security roles with demonstrated compliance and technical responsibilities · ...
1 week ago
The Federal Staff Consultant will conduct FISMA and FedRAMP assessments. Complete federal audit training and gain expertise in FedRAMP audits as a 3PAO Assessor. · Assist client with evidence review · Clearly communicate with clients regarding evidence · Review SSPs for testing · ...
1 month ago
· Description · Position at Ziff Davis · About the Company: · Ziff Davis (NASDAQ: ZD) is a vertically focused digital media and internet company whose portfolio includes leading brands in technology, shopping, gaming and entertainment, health and wellness, connectivity, cybersec ...
3 days ago
Please note that under Federal & FedRAMP regulations, hiring for this role is limited to US citizens only. FedRAMP Staff may be subject to customer or third-party background checks, up to and including a secret clearance, if required by their role at SentinelOne. · What are we l ...
1 day ago
We are seeking a Senior IT Internal Auditor to play a key role in evaluating and strengthening our organization's IT governance, security, and compliance. · Lead IT Audits: Plan and execute IT audits... · ...
1 week ago
As a Senior Consultant, you will be responsible for supporting and leading client engagements. · ...
3 weeks ago
+Job summary+SentinelOne is continuing to grow our Public Sector business and is looking for a Sr. Public Sector Compliance Specialist with experience in monitoring reviewing and ensuring the implementation and maintenance of security controls are by Federal guidelines and regula ...
1 week ago