GCyber is hiring a Cyber Risk Management Analyst to support data security risk assessments for a high visibility Executive Branch customer. Your primary focus will be on identifying and evaluating potential data security risks and vulnerabilities within the systems and developing effective mitigation strategies. This is a dynamic role that will require knowledge and understanding in data security planning and controls compliance as well as a technical background to interpret data security risk and security assessment results and technical guidance. This position is hybrid telework with 3 days onsite in Washington, DC. Given the unique mission requirements, there is no opportunity for full-time remote work arrangements.
As a Cyber Risk Management Analyst, you will:
Perform security risk assessments to data security principles and best practices are applied to applications architectures during the design, implementation, and operations phases.
Risk assessments include evaluating system interconnections for potential risks or vulnerabilities in how data is transmitted, accessed, and stored.
Develop risk assessment reports that can be presented to senior executives, highlighting features, functionality, interoperability, and other critical aspects.
Research data security capabilities for applications to provide recommendations for enhancing data security.
Identify and recommend appropriate security measures to mitigate identified risks. Collaborate with offices such as Cloud Application Security, Data Governance, and others to incorporate their findings into the risk assessment package.
Draft and maintain waivers, Plan of Action and Milestones (POA&Ms), and other relevant artifacts.
Minimum Qualifications and Experience:
Active DoD Top Secret/SCI clearance
BA/BS Degree in IT, Security, or a related field (or equivalent experience)
DoD IAT II certification (i.e., CCNA-Security, CySA , GICSP, GSEC, Security , CND, SSCP) https://public.cyber.mil/wid/cwmp/dod-approved-8570-baseline-certifications/
4 years of experience including demonstrated experience conducting security risk assessments for IT systems, applications, or services within a Government environment
Solid knowledge of cybersecurity frameworks, standards, and best practices such as NIST, FISMA, FedRAMP, etc.
Strong problem-solving abilities and attention to detail.
Excellent written and verbal communication skills, with the ability to explain technical concepts to non-technical stakeholders.
GCyber is an Equal Opportunity Employer. This means you don't have to worry about whether your application process will be fair. We consider all applicants without regard to race, color, religion, age, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, veteran status, or disability. For future job notifications please follow GCyber on LinkedIn. https://linkedin.com/company/gcyber
Come join our team as a cyber risk analyst! In this key role you will work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan. Your role will be to use...
Job DetailsCompany Overview: ADT has been in the business of helping save lives since 1874. As the #1 smart home security provider in the U.S., we help protect and connect families, businesses and lar...
Job DetailsCenter 3 (19075), United States of America, McLean, VirginiaSr. Cyber Analyst, RiskCapital One is one of the fastest growing organizations in the world today. The growth of the business is ...
Job Title Cyber Risk and Compliance Analyst Location ORLANDO, FL 32826 US (Primary) Job Type Full-time Job Description Do you want to work in a dynamic and demanding atmosphere where you can make a di...
Job Description: Do you want to work in a dynamic and demanding atmosphere where you can make a difference as an information technology professional and have fun doing so? A large vision necessitates ...