Job Description
-Plan, perform, analyze, and report on compliance with designated security controls using a test environment as well as Assured Compliance Assessment Solution (ACAS) scans.
-Implement vulnerability compliance actions to ensure the safety of data.
-Ensure all Information Security Continuous Monitoring (ISCM) tasks are completed on time.
-Monitor, assess, and report system security vulnerabilities, document corrective actions, and implement preventative actions to minimize the security vulnerabilities.
-Identify and analyze emergent cybersecurity technologies and systems engineering methods to improve the system’s cybersecurity posture.
-Perform testing to ensure security controls are implemented correctly and ensure the security of data.
-Perform testing of all upgrades to ensure cybersecurity compliance prior to installation of new equipment.
-Assess, remediate, mitigate, and document/track risks associated with cybersecurity vulnerabilities.
-Perform Security Impact Assessments on all system changes and events to identify and document and impacts to cybersecurity.
-Validate systems are configured securely as part of testing initiatives.
-Document corrective actions or proposed changes to cybersecurity functionality.
-Create, manage, and delete user accounts, profiles, and policies on systems.
-Support incident detection and preliminary response actions to security incidents.
-Work with a team of engineers to ensure all equipment is properly STIG’d and ensure patching is completed in a timely manner.
-Perform ATO package and control compliance reviews in eMASS and maintain the POA&M.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
-Master’s or Bachelor’s degree in an IT- or cyber-related field.
-Minimum of 10 years of cyber-related experience
-Must have an active Secret clearance.
-Security+ certification at a minimum, CISSP preferred.
-Experience with ACAS, ESS, and other compliance tools/techniques.
-Experience with Elastic, Splunk, or other log collection tools
-Experience with eMASS
-Robust understanding of Risk Management Framework (RMF) security controls.
-Experience investigating security incidents.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.