Loading...

 

Subject Matter Expert III – Governance, Risk, & Compliance (2 Openings):

 

General Info:

 

Citizenship Required: US Citizenship

 

Clearance: Secret

 

Job Duration: Full Time

 

Site: Washington D.C. Metro Area (Crystal City, VA)

 

Travel: 10% or Less

 

 

 

Responsibilities:

 

The GRC Subject Matter Expert III is an experienced Manager level professional with comprehensive, in-depth experience in risk advisory   aaaaservices with a focus in information security, cybersecurity and information technology risk management and compliance including:

 

·       Vulnerability Assessment and Management

 

·       Security Strategy Assessment and Management

 

·       Infrastructure & Operations Security and Risk Management

 

·       Privacy & Data Protection

 

·       Use and compliance with frameworks and regulations such as FISMA, NIST (800-53, cybersecurity), ISO, ITIL, OWASP, PCI, GLBA, HIPAA, aaaaCobIT, and other data privacy and security standards and regulations

 

·       Penetration Testing

 

·       Identify and mitigate risks throughout the schedule

 

·       Coordinate the day-to-day activities required to deliver all projects on time

 

·       Host regular project meetings and deliver crisp status updates to all stakeholders

 

·       Manage external dependencies and logistics

 

·       Work with senior technical leads, and client counterparts to develop technical innovation strategy for the program

 

·       Assist the Program Manger with preparation of status reports and briefings

 

·       Actively participate in client discussions, meetings, and business development opportunities

 

 

 

Education and Experience Required:

 

 ·       Knowledge and experience with NIST Risk Management Framework required

 

·       10+ years of working experience in security related field

 

·       PMP, CISSP, CISA, SANS, or other relevant certification

 

·       Experience and Competency with:

 

o   CSAM (or similar tool i.e. TAF, Archer, Xacta, etc.)

 

o   Security Authorization and Assessment (SA&A)

 

o   Privacy Risk Assessment (PRA) Agency’s processes

 

o   Firewalls

 

o   Enterprise anti-virus management

 

o   Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments

 

o   DBProtect

 

o   WebInspect

 

o   Tenable Security Center

 

·       Participation in the CCB, TRB, and SAR Board, review change requests, and support engineering activities for projects

 

·       Ability to work in a fast-paced, demanding environment

 

·       Excellent organizational skills and strong attention to detail

 

·       Ability to prioritize duties based on shifting demands

 

·       Strong analytical and problem-solving skills

 

·       Excellent verbal and written communication skills

 

 

 

Desirable:

 

 ·       College degree in Information Security or relevant field

 

If interested, please send resume to careers@digitalglobalconnectors.com

 

 

 

Copyright 2012 DGC. All rights reserved

2015 | DESIGN BY  JMAR VISION (John Martin)