SENIOR CONSULTANT (Hybrid/Remote)
Emagine IT, Inc. · Rockville, MD · 3 mo ago
ConsultingFull-time
Responsibilities
- Lead system security assessments within cloud-based environments in accordance with CMMC, NIST 800-171, and other authoritative IT security guidance
- Provide direction for scheduling, project sequencing, and resource management; assist with managing client expectations and performing project management
- Prepare, review, and/or update, and maintain IT Security supporting artifacts; provide IT security guidance to Information System Owners
- Identify information security problems and challenges, research and develop technical solutions to rectify them
- Execute, examine, interview, and test procedures in accordance with CMMC requirements and NIST 800-171A
- Ensure cyber security policies are adhered to and that required controls are implemented
- Validate information system security documentation to ensure CMMC and NIST control requirements are met
- Author recommendations based on findings to improve security postures compliant with CMMC and NIST controls
- Participate in client interviews to complete Security Assessments
- Ensure existing systems Security Authorization Packages remain up to date throughout the life cycle
- Build a customer-focused relationship with client(s)
- Collaborate across multiple internal teams to ensure successful delivery of results based on scope of work
- Establish standards and procedures to minimize risks
- Drive working sessions with client to ensure expectations and direction are aligned and timelines are being met
- Demonstrate ability to lead projects through the project lifecycle from initiation to project closure
Requirements
- 5-8 years of experience in either auditing or consulting
- Strong CMMC and NIST experience (in order of preference): CMMC/ NIST SP 800-171, FedRAMP, NIST SP 800-53, RMF, FISMA
- Strong written and verbal communication skills including the ability to explain technical matters to non-technical audiences
- Broad based IT background with a technical understanding of networks, protocols, security configurations, cryptography, identity and access management, and the systems development life cycle
- Excellent communication skills, both written and verbal with strong presentation skills
- Ability to interact with clients and represent Emagine IT in a professional manner
- Ability to successfully manage multiple tasks
- Serve as a mentor to Associate Security Consultants and Security Consultants on best practices
- Team player able to work well with others in a collaborative manner and is a self-starter who can work with minimum supervision
Qualifications
- Certified Cybersecurity Analyst (CCA) or Certified Cybersecurity Professional (CCP)
- One of the following DoD 8140.3 - 612 Certifications: CompTIA Security+, CompTIA Cloud+, CompTIA PenTest+, CompTIA Security+, CompTIA CySA+
- Nice to have: LCCA AAP/EEO Statement