Cybersecurity Advisor supporting Rapid7’s Managed Services and improving customer security posture. Engaging with clients to provide incident response and advisory relationships while leveraging technical knowledge.
About the role
- Information System Security Officer responsible for maintaining FISMA systems security for Federal agencies. Overseeing security assessments and collaborating with technical teams in Washington D.C.
Responsibilities
- Ensure the assigned FISMA systems maintain their ATO through independent security assessment and authorization;
- The ISSO shall have oversight responsibility to ensure proper access controls have been implemented and managed;
- ISSO shall ensure audit logs are reviewed at an agreed upon frequency, where the frequency may increase if warranted by incident or situational awareness.
- When reviewing logs, some events will require follow-up inquiries to determine if a problem exists, whether corrective action is required, or if there is another explanation.
- Be responsible for conducting assessments of controls for their system to ensure the controls have been implemented properly and are still effective where the risk posture is documented in a system risk assessment report.
- Ensure documents provided to auditors are what was requested and approved for release. Documents provided to auditors should be properly labeled so that the auditor is aware if they contain sensitive information.
- Ensure that new vulnerabilities are evaluated by the respective subject matter expert and corrective action implemented.
- Follow agreed on procedures when providing documents;
- Collaborate with the Security Engineer in conducting security impact assessments on change to their respective FISMA systems.
- Collaborate with the Security Operations Center in reviewing vulnerability and compliance scan results at an agreed upon frequency. Any findings in the scan results are to be tracked as a corrective action plan and managed in CSAM as a POAM.
Requirements
- Strong working knowledge and familiarity with NIST publications and privacy frameworks.
- Demonstrated understanding of cloud service models, hybrid models, financial applications, and mobile security technologies and tools.
- Demonstrated experience supporting an industry risk management tool executing A&A activities.
- Ability to identify and assess risks and recommend appropriate remediation strategies.
- Must be well-organized and detail-oriented with the ability to coordinate, prioritize multiple tasks, and be adaptable to change to accomplish assignments.
- Ability to work independently and with teams.
- Professional and polished interpersonal and communication skills.
- Proficient with Microsoft Office to include Outlook, Word, PowerPoint, and Excel.
Benefits
- Paid parental leave
- Flexible time off
- Certification and training reimbursement
- Digital mental health and wellbeing support memberships
- Comprehensive insurance options
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Cybersecurity Incident Responder leading response efforts to complex attacks globally for TransUnion. Collaborating with teams responsible for incident response in cloud and other environments.
Manager of Security Engineering leading teams focused on SIEM solutions for cybersecurity. Overseeing data pipelines and fostering an inclusive engineering culture at Vanguard.
Application Security Specialist at Vanguard plays a pivotal role in securing software development lifecycle. Develop strategies for technology security, ensure compliance, and maintain security tools in CI/CD pipeline.
Sales Manager for IT Security Solutions & Managed Services in B2B sector. Responsible for customer acquisition and relationship management.
Cybersecurity Program Manager driving enterprise - wide security programs for healthcare payments company. Collaborating with cross - functional teams to execute cybersecurity strategy and mitigate risk.
Training for security personnel with IHK certification in Köln. Online courses available, and immediate start possible.
Technical Security Coordinator at Vivicta overseeing and optimizing Unified Management Network platform. Collaborating with teams across Finland, Sweden, Norway, and Czech Republic.
Customer Security Engineer delivering end - to - end pentesting services for Aikido’s developer - first security products. Collaborating with customers and the AI pentesting team to enhance security solutions.
HSE Coordinator responsible for implementing health and safety policies for Veepee. Supporting workplace safety, fostering safety culture, and ensuring compliance in diverse sectors.