Jobs
>
Rockville

    Cybersecurity Compliance Lead - Rockville, United States - Axle

    Axle
    Axle Rockville, United States

    1 week ago

    Default job background
    Description

    Job Description

    Job Description

    Axle is a bioscience and information technology company that offers advancements in translational research, biomedical informatics, and data science applications to research centers and healthcare organizations nationally and abroad. With experts in biomedical science, software engineering, and program management, we focus on developing and applying research tools and techniques to empower decision-making and accelerate research discoveries. We work with some of the top research organizations and facilities in the country including multiple institutes at the National Institutes of Health (NIH).


    Axle is seeking a Cybersecurity Compliance Lead to join our vibrant team at the National Institutes of Health (NIH) supporting the National Center for Advancing Translational Sciences located in Rockville, MD.

    Benefits We Offer:

    • 100% Medical, Dental & Vision Coverage for Employees
    • Paid Time Off and Paid Holidays
    • 401K match up to 5%
    • Educational Benefits for Career Growth
    • Employee Referral Bonus
    • Flexible Spending Accounts:
      • Healthcare (FSA)
      • Parking Reimbursement Account (PRK)
      • Dependent Care Assistant Program (DCAP)
      • Transportation Reimbursement Account (TRN)

    Zero Trust is currently seeking a "Cybersecurity Compliance Lead" to join our team. The Cybersecurity Compliance Lead will support day-to-day and project-based security activities, POA&M remediations, vulnerabilities impact, and remediation process for the on-premises and cloud environments.

    The Cybersecurity Compliance Lead will use their expertise to effectively manage security compliance activities, security waivers, documentation by working and providing guidance to all the stakeholders.

    Primary Responsibilities:

    · Manage daily Cybersecurity compliance activities.

    · Lead and mentor the NCATS CSS Cybersecurity compliance team.

    · Lead NCATS Cybersecurity compliance efforts to follow the Risk Management Framework (RMF). Must be familiar with Risk Management Framework (RMF), NIST and other Government mandates.

    · Have a solid understanding of the ATO preparation and assessment process.

    · Schedule and coordinate compliance activities, sessions, and meetings with the stakeholders.

    · Provide security controls implementation guidance.

    · Be able to effectively work with stakeholders to manage and close POA&Ms.

    · Provide effective guidance to the stakeholders on secure baseline configurations.

    · Manage documentation in NIH GRC tool.

    · Ensure on time delivery of task order deliverables for cybersecurity compliance.

    · Manage work through tools such as NIH incident response (IRT) portal, Splunk, ServiceNow, Jira, Confluence etc.

    · Aid with the ATO preparations and security controls implementation.

    · Establish communications with vendors for the release of newly identified vulnerabilities and to ensure they understand the specialized requirements of the client's information systems.

    · Develop daily, weekly, and annual NCATS security landscape metrics.

    · Identify, analyze, and develop mitigation or remediation actions for system and network vulnerabilities.

    · Provide notification of potential threats by tracking vulnerabilities and exploits, propagation of worms and viruses.

    · Monitor the progress of internal and external organizations to ensure operational requirements are fulfilled for audits and reviews.

    Basic Qualifications:

    · Bachelor's degree in a relevant technical discipline and 4+ years of overall related experience. 5+ years of additional related years of experience is accepted in lieu of a degree.

    · Experience working with NIST 800-xxx series guidance.

    · Familiarity with different encryption types.

    · Familiarity with Windows/Unix/Linux platforms.

    · Familiarity with DevOps pipelines, code scanning, penetration testing etc.

    · Proven experience with incident and change management systems such as ServiceNow and Jira.

    · Well versed in Active Directory, Office 365, and other platforms.

    · Experience in Threat and Vulnerability scanning and remediation methodologies.

    · Familiarity with System Incident and Event Management (SIEM) and other logging and monitoring tools.

    · Experience in Vulnerability management and threat management tools such as Tenable Nessus, Netsparker, McAfee suite, Palo Alto, Amazon inspector and Cloud Watch etc.

    · Experience in a hybrid operations environment providing leadership specified reports based on information received from other system owners and operations team.

    Preferred Qualifications:

    · BS or MS degree in computer science, computer engineering, information systems, privacy engineering or related field of study.

    · CEH, Security Plus. Splunk Power User.

    · Excellent communication and presentation skills and the ability to effectively communicate designs, proposals, and results; and negotiate options at management levels

    · Proficient in developing briefing materials, administrative, and logistic support.

    Disclaimer:The above description is meant to illustrate the general nature of work and level of effort being performed by individuals assigned to this position or job description. This is not restricted as a complete list of all skills, responsibilities, duties, and/or assignments required. Individuals may be required to perform duties outside of their position, job description or responsibilities as needed.


    The diversity of Axle's employees is a tremendous asset. We are firmly committed to providing equal opportunity in all aspects of employment and will not tolerate any illegal discrimination or harassment based on age, race, gender, religion, national origin, disability, marital status, covered veteran status, sexual orientation, status with respect to public assistance, and other characteristics protected under state, federal, or local law and to deter those who aid, abet, or induce discrimination or coerce others to discriminate.


    Accessibility: If you need an accommodation as part of the employment process please contact:

    #IND

    #LI-ZG1

  • Axle Informatics

    Cybersecurity Compliance Lead

    2 weeks ago

    Axle Informatics Rockville, United States

    Axle · is a bioscience and information technology company that offers advancements in translational research, biomedical informatics, and data science applications to research centers and healthcare organizations nationally and abroad. With experts in biomedical science, softwar ...

  • Axle Inc

    Cybersecurity Compliance Lead

    2 weeks ago

    Axle Inc Rockville, United States

    Job Description Job Description Axle is a bioscience and information technology company that offers advancements in translational research, biomedical informatics, and data science applications to research centers and healthcare organizations nationally and abroad. With experts i ...

  • TEKsystems

    Security Compliance Lead

    2 weeks ago

    TEKsystems Rockville, MD, United States

    Description: · As a Security Compliance Analyst, you will be joining a team performing security assessments and providing consulting support to assist clients in meeting FISMA and FedRAMP requirements. The ideal candidate will have a firm understanding of how to apply the princip ...

  • TEKsystems

    Security Compliance Lead

    2 days ago

    TEKsystems Rockville, United States

    TEKsystems · Security Compliance Lead · Rockville , · Maryland · Apply Now · As a Security Compliance Analyst, you will be joining a team performing security assessments and providing consulting support to assist clients in meeting FISMA and FedRAMP requirements. The ideal c ...

  • Axle Inc

    Cybersecurity Compliance Lead

    2 weeks ago

    Axle Inc Rockville, United States

    Job Description · Job Description · Axle · is a bioscience and information technology company that offers advancements in translational research, biomedical informatics, and data science applications to research centers and healthcare organizations nationally and abroad. With ...

  • Axle Inc

    Cybersecurity Compliance Lead

    2 weeks ago

    Axle Inc Rockville, United States

    Job Description · Job Description · Axle · is a bioscience and information technology company that offers advancements in translational research, biomedical informatics, and data science applications to research centers and healthcare organizations nationally and abroad. With ...

  • TEKsystems

    Security Compliance Lead

    5 days ago

    TEKsystems Rockville, United States

    100% Remote · Top 3 skills · NIST · Knowledge of the controls, walking through apps through them. · Who is self-motivated, working from home you must be responsible for your work. · Nice to have · Experience with criminal justice controls from the FBI is a huge nice to have ...

  • Hewlett Packard

    Financial Controls and Compliance Lead

    2 weeks ago

    Hewlett Packard Spring, United States

    The Global Risk Organization provides a unique opportunity to get a broad view of HP businesses and processes in a relatively short period of time. The team is tasked with assessing how HP management is managing the inherent risk in our large, diverse and rapidly changing company ...

  • CEDENT

    Lead Cybersecurity Compliance

    1 day ago

    CEDENT Washington, United States

    Primary Job Responsibilities · **Qualifications**: · Technical Skills and Core Competencies Required · Preferred Certifications: CISSP, CISM, CRISC, CDPSE · Must have a basic background and understanding of SecDevOps, information technology, networking, virtual environments, and ...

  • GE Aviation

    Lead Specialist, International Trade Compliance

    5 days ago

    GE Aviation Washington, United States

    **Roles & Responsibilities**: · Consistent with the role of the ITC team, the primary tasks of Specialist - ITC include, but are not necessarily limited to): · - Assist with the development of licensing strategies for compliant business execution. · - Generate, maintain, and moni ...

  • Mary's Center

    Compliance Lead

    3 weeks ago

    Mary's Center Washington DC, United States

    Description · Mary's Center is committed to promoting diversity, equity and inclusion (DEI) within our organization and the communities we serve. We embrace diversity of experiences, ideas, and individuals, and seek to bring a diverse group of candidates to the table. · Importa ...

  • Interfaith Works

    Director of Finance

    5 days ago

    Interfaith Works Rockville, United States

    **Title**:Director of Finance · **Reports to**:CEO · **Employment Status**: Full-time · **FSLA Status**:Exempt · **Pay rate**:$140,000 - $145,000 · Since 1972, Interfaith Works (IW) has been meeting people where they are regardless of their challenges. We provide emergency shelte ...

  • Precise Software Solutions

    Subject Matter Expert

    3 weeks ago

    Precise Software Solutions Rockville, United States

    **Job Title: Medicare/Medicaid Fraud, Waste, and Abuse (FWA) Subject Matter Expert** · **Responsibilities**: · - Lead or actively participate in design meetings, providing FWA expertise to ensure compliance and effectiveness. · - Provide guidance on resolving business needs and a ...

  • Precise Software Solutions

    System Security Officer

    3 weeks ago

    Precise Software Solutions Rockville, United States

    **Job Title**:System Security Officer** · **Job Overview**: The System Security Officer (non-key) plays a crucial role in ensuring compliance with all security requirements set forth by the Centers for Medicare & Medicaid Services (CMS) and the U.S. Department of Health and Human ...

  • Nika

    Capture Manager

    1 week ago

    Nika Rockville, United States

    NIKA is hiring for a Capture Manager to support our business development team out of the Washington, D.C metro area · Named a "Top Workplace" by the Washington Post, NIKA is a well-established company that is focused on growth within an entrepreneurial environment. We work with g ...

  • US Nuclear Regulatory Commission

    Grants Specialist

    2 weeks ago

    US Nuclear Regulatory Commission Rockville, United States

    **Duties**: · With support from Grants Officers and/or Branch Chief, typical duties include: · - Preparing documentation required for Funding Opportunity Announcements for financial assistance awards (grants and cooperative agreements) · - Administering financial assistance award ...

  • Aretum

    508 Compliance Lead

    2 weeks ago

    Aretum Arlington, United States

    ARETUM, a leading government contracting company specializing in technology-enabled mission support services, is seeking a skilled and experienced 508 Compliance Lead to join our team. As a 508 Compliance Lead at ARETUM, you will play a critical role in ensuring that our digital ...

  • City of Rockville

    Codes Inspector

    2 weeks ago

    City of Rockville Rockville, United States

    **Job Summary**: · Our value-driven department seeks someone who has proven skills in project management, community engagement, research, and producing written reports and studies. Please join our Community Planning and Development Services Department where our employees thrive d ...

  • The EMMES Corporation

    Clinical Trials Administrator Analyst I

    1 week ago

    The EMMES Corporation Rockville, United States

    Overview: · **Clinical Trials Administrator Analyst I** · **US Remote** · Emmes Group: Building a better future for us all. · Emmes Group is transforming the future of clinical research, bringing the promise of new medical discovery closer within reach for patients. Emmes Group w ...

  • GSK

    EHS Manager

    1 week ago

    GSK Rockville, United States

    **Site Name**: USA - Maryland - Rockville · **Posted Date**: Apr · GSK is currently looking for an EHS Manager to join our team in Rockville, MD. The EHS Manager is responsible for establishing, managing, and continuously improving the environmental compliance and sustainability ...