DevSecOps engineer at Ford ensuring secure software development and compliance with security standards. Collaborating with teams to embed security practices and assess vulnerabilities in software delivery.
About the role
- Security Data Specialist supporting a large-scale cybersecurity assessment program for State government agencies. Transforming assessment data into actionable insights and enabling data-driven decision-making across stakeholders.
Responsibilities
- Analyze cybersecurity assessment data aligned to frameworks such as NIST CSF, NIST 800-53, and NIST 800-171
- Interpret maturity scores (CMMI 0–5 scale) and identify trends, risks, and control gaps
- Ensure accuracy, completeness, and consistency of cybersecurity data outputs
- Input, manage, and validate assessment data within GRC platforms (e.g., ServiceNow GRC)
- Support POA&M (Plan of Action & Milestones) development and tracking
- Ensure proper structuring of findings, risks, and remediation actions for downstream use
- Develop and maintain interactive dashboards displaying maturity scores across NIST CSF domains, top risks, findings, and issues,
- Support real-time reporting and data visualization for stakeholders
- Generate executive-level reports and analytics to support decision-making
- Ensure compatibility of assessment data with State systems and reporting requirements
- Validate data accuracy and support QA processes for reporting deliverables
- Assist in maintaining standardized data formats and reporting templates
- Work closely with cybersecurity analysts, auditors, engineers, and project leadership
- Support coordination with agency stakeholders and Information Security Officers (ISOs)
- Provide data insights to inform remediation prioritization and risk decisions
Requirements
- Bachelor’s degree in Cybersecurity, Information Systems, Data Analytics, or related field (or equivalent experience)
- 3+ years of experience in cybersecurity data analysis, IT systems analysis, or related role
- Experience working with: Cybersecurity frameworks (NIST CSF, NIST 800-53, etc.)
- Data analysis and reporting tools (Excel, Power BI, Tableau, etc.)
- Familiarity with GRC platforms (ServiceNow preferred)
- Strong analytical, problem-solving, and organizational skills
Benefits
- Health insurance
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer responsible for ensuring safety and security at the Genesee Brewing Company. Monitoring premises, responding to emergencies, and providing visitor assistance during shifts.
Security Estimator creating estimates and proposals for security projects at LINX. Collaborating with engineering and sales teams for system design and client relationships.
Product Security Architect at Expedia designing secure architecture for services and APIs. Collaborating with teams to guide secure practices and integrate AI - driven solutions.
IT Security Officer overseeing information security for a specific IT sector at Desjardins. Collaborating with cross - sector teams and managing information security risks and vulnerabilities.
Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.