Jobs · Information Technology

Senior Security Consultant

Kratos Defense and Security Solutions · Herndon, VA · 1 wk ago
RemoteRemoteInformation TechnologyFull-time

Responsibilities

  • General Expert-level knowledge of the CMMC framework, including practice requirements and the assessment methodology.
  • Regularly obtains continuing education necessary to maintain certifications and/or meet qualifications requirements.
  • Proactively maintains up-to-date knowledge of industry trends to enhance skills and abilities.
  • Independently and proactively communicates progress on tasks and deliverables.
  • Applies quality control practices to work product in advance of submission for quality assurance review.
  • Takes ownership of opportunities to improve current service offerings.
  • Provide critical input into the development of assessment artifacts including the Assessment Plan, Daily Checkpoint Logs, Risk Traceability Matrix, and Security Assessment Report and briefing.
  • Conduct client interviews and participate in working sessions to assess the technical and operational adequacy and sufficiency of security practice implementations.
  • Collaborate effectively within dynamic teams and across multiple customer organizations with diverse personalities and expertise to drive agreement on complex issues.
  • Effectively document successful and unsuccessful security practice implementations that appropriately reflect testing methodologies and evidence used to determine security practice implementation effectiveness.
  • Effectively cross-walk multiple sources of evidence (artifacts, demonstrations, interviews, and tests) to assess the maturity of practice implementation throughout an organization.
  • Conduct diagnostic/discovery sessions to gain an understanding of security architecture and practice implementations.
  • Leverage understanding of security architecture and practice implementations to identify gaps and develop supporting documentation.
  • Work with multiple internal and external stakeholders to assess and identify security compliance gaps and propose technical and operational remediation solutions.
  • Provide consultative reviews of security documentation with accompanying remediation or enhancement recommendations.
  • Collaborate effectively within dynamic teams and across multiple customer organizations with diverse personalities and expertise to drive agreement on complex issues.

Requirements

  • Cybersecurity Experience: 5 or more years of hands-on work in a cybersecurity role (e.g., CISO, Red Team member, SOC analyst).
  • Management Experience: 5 or more years of experience in a management or leadership role.
  • Assessment/Audit Experience: 3 or more years participating on teams conducting internal or external compliance audits.
  • CMMC Certified Assessor (CCA) Tier 3 suitability (or Secret clearance or higher).
  • Ability and willingness to learn and support other security compliance frameworks.
  • Ability to successfully pass security framework certification requirements.
  • Broad based IT background with a technical understanding of networks, protocols, security configuration, cryptography and identity and access management.
  • Excellent communication skills, both written and verbal, including an ability to translate technical concepts and issues into non-technical or layman's terms.
  • Ability to successfully deliver on multiple, simultaneous tasks.

Skills

  • Knowledge of CMMC framework, including practice requirements and the assessment methodology.
  • Continuing education in cybersecurity to maintain certifications and qualifications.
  • Industry trends and knowledge to enhance skills and abilities.
  • Effective communication and documentation of security practice implementations.
  • Collaboration with diverse teams and stakeholders.
  • Technical understanding of networks, protocols, security configuration, cryptography, and identity and access management.
  • Excellent written and verbal communication skills.
  • Ability to manage multiple tasks simultaneously.

Benefits

  • Medical, Dental & Vision Insurance Coverage.
  • Life/ADD & Short/Long Term Disability Insurance.
  • 401(k) Savings Plan.
  • Employee Stock Purchase Plan (ESPP).
  • Paid Time-Off (PTO).
  • Holidays.
  • Education Reimbursement.

Pay

Competitive salary based on experience and education.

Schedule

Remote work is available.

Qualifications

Local to the Washington DC metro area preferred.

Preferred Skills/Experience

  • Certified Information Security Manager (CISM).
  • Certified Information Systems Security Officer (CISSO).
  • Certified Penetration Testing Engineer (CPTE).
  • Cybersecurity Analyst+ (CySA+).
  • Federal IT Security Professional–Auditor (FITSP-A).
  • GIAC Cloud Security Automation (GCSA).
  • Certified Information Systems Auditor (CISA).
  • Certified Information Systems Security Professional (CISSP).
  • CISSP – Information Systems Security Engineering Professional (CISSP-ISSEP).
  • GIAC Security Leadership Certification (GSLC).
  • GIAC Systems and Network Auditor (GSNA).

Company Information

Kratos Defense & Security Solutions develops and fields transformative, affordable technology, platforms, and systems for United States National Security related customers, allies, and commercial enterprises. We proactively build trusted relationships with our peers, partners and customers, and take ownership for our actions—always striving to do the right thing.

We are an Equal Opportunity Employer and committed to providing a workplace free from discrimination and harassment. We value diversity and inclusion and strive to create a culture where everyone feels respected and valued.

For applicants in the EU and California residents, please review our privacy notice.

Similar jobs

Senior Security Consultant

NTT DATA North AmericaCheyenne, WY· 3 wk ago
Information Technology$98k–$145k/yrapply on careers.services.global.ntt