Job Description

Job Description:

Candidate must demonstrate the following values in their professional work:

• Demonstrate Integrity to hold the highest standards of honesty and transparency.
• Be Collaborative. Cybersecurity is a collective endeavor, and we believe in fostering strong relationships.
• Think Strategic. To help our clients enhance their cybersecurity, they need a plan.
• Provide Clarity . Have a business acumen that allows a client to understand complex issues with Clarity .
• Opportunity . Have a positive mindset and look at compliance and cybersecurity as an opportunity to improve small businesses by looking on the horizon to prevent breaches.

Basic Functions:

• Conduct regular risk assessments to identify potential security threats. Organize and schedule on-site and remote project tickets.
• Conduct gap analyses to identify areas of non-compliance or weak security controls.
• Develop risk mitigation strategies and maintain a risk register.
• Monitor and report on the effectiveness of risk management efforts.
• Ensure the organization complies with relevant regulations and standards (e.g., HIPAA, ISO 27001, CISv8, CMMC 2.0).
• Maintain up-to-date documentation of compliance activities.
• Conduct periodic reviews and updates of policies to align with evolving standards and regulations.
• Prepare regular reports on the status of the GRC program for senior management.
• Work closely with IT, legal, and other departments to ensure cohesive GRC efforts.

Additional Duties and Responsibilities:

• Develop and manage a vendor risk management program. 
• Manage and facilitate reporting and recommendations for vulnerability management.
• Assist in the development and execution of incident response plans. 
• Perform business impact analysis and contribute to the development and maintenance of business continuity plans.
• Implement data protection policies and practices to safeguard sensitive information.
• Develop and deliver security awareness training programs.
• Support the vCISO in aligning security initiatives with business objectives.
• Evaluate the effectiveness of training programs and make necessary adjustments.
• Improve customer service, perception, and satisfaction.
• Ability to work in a team and communicate effectively.
• Assist with customer assessments for project solutions, information gathering for risk assessments, and client onboarding.
• Business awareness: specific knowledge of the customer and how IT relates to their business strategy and goals.
• Document internal processes and procedures related to duties and responsibilities.
• Review Cybersecurity publications and online materials to remain up-to-date with current and future threats emerging in the industry.

Knowledge, Skills, and/or Abilities Required:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• In-depth understanding of regulations and standards such as HIPAA, ISO 27001, CISv8, and CMMC 2.0.
• Cybersecurity Certifications, such as:, CompTIA Security +, CISSP, CISM, CRISC, CISA, CEH. 
• Knowledge of risk management principles and methodologies.
• Knowledge of how to develop, implement, and update security policies and procedures.
• Hands-on experience utilizing a GRC tool.
• Interpersonal skills: such as telephony skills, communication skills, active listening and customer-care.
• Ability to organize, schedule, and manage on-site and remote project tickets.
• Technical awareness: ability to match resources to technical issues appropriately.
• Willingness to engage in continuous learning and professional development. 

Educational/Vocational/Previous Experience Recommendations:

• CMMC Certification (RP, CCP, CCA)
• Experience in Cybersecurity/Information Technology or a related field.
• 3 years of Cybersecurity or related experience.

Benefits:

• Competitive salary based on experience and qualifications.
• Health, vision, and dental benefits included.
• Performance based incentives.
• Generous bonus levels.
• Fun working environment and culture.
• Great opportunity for advancement.

Job Tags

Similar Jobs