Senior Security Advisor – Lead Control Assessor

🕒 vor 4 Monaten

🌴 South Carolina – Remote

🌴 South Carolina – Remote

⏰ Vollzeit

🟠 Senior

👮‍♂️ IT-Sicherheitsingenieur

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

Soteria - Security Solutions & Advisory

WebsiteLinkedInAlle Stellen

11 - 50 Mitarbeiter

🔒 Cybersecurity

📋 Compliance

💰 €2.500.000 Venture Round im 2018-04

Cybersecurity • Compliance

Soteria ist eine kundenorientierte Organisation, die fachkundige Beratung, Consulting und maßgeschneiderte Sicherheitslösungen anbietet, um Cybersecurity-Vorfälle zu verhindern und darauf zu reagieren. Gegründet im Jahr 2014 und mit Sitz in Charleston, South Carolina, bietet Soteria eine Reihe von Dienstleistungen an, darunter Managed Detection and Response, Domain Watch, Incident Response, Offensive Security Services und Sicherheitsbewertungen. Das Unternehmen ist stolz darauf, Unternehmen rund um die Uhr gegen Cyberkriminalität zu verteidigen und maßgeschneiderte Lösungen zu liefern, die die Sicherheitsoperationen verbessern. Das Team von Soteria bringt umfangreiche Erfahrung aus verschiedenen Branchen, staatlichen und föderalen Geheimdienstgemeinden mit und betont den Glauben, dass 'Sicherheit für alle ist'.

Beschreibung

• Lead and execute cybersecurity control assessments against a defined subset of key controls aligned to established frameworks (NIST SP 800-53 Rev. 5). • Assess control implementation status using standardized criteria and validation methodologies. (NIST SP 800-53A Rev. 5). • Test information systems using documentation review, system walk-throughs, and stakeholder interviews to assess the design and operating effectiveness of NIST SP 800-53 Rev. 5 security controls. • Apply consistent judgment to determine evidence sufficiency and appropriateness. • Lead planning, kickoff, execution coordination, and closeout activities for assigned assessment engagements. • Coordinate assessment activities and task assignments across Control Assessors to meet delivery timelines. • Serve as the primary point of contact for client stakeholders during assessment engagements. • Review and approve assessment narratives, findings, and control determinations prior to quality assurance submission. • Ensure assessments are executed consistently across multiple clients to support trend analysis and benchmarking. • Enforce adherence to defined assessment methodologies, scope boundaries, and validation standards. • Support quality assurance reviews by addressing feedback and ensuring accuracy, clarity, and consistency of deliverables. • Lead and participate in client interviews, system walkthroughs, and working sessions in a professional, structured manner. • Clearly communicate assessment scope, expectations, and evidence requirements to stakeholders. • Present assessment results, key findings, and risk implications to executive leadership and board-level stakeholders in a clear, concise, and professional manner. • Mentor and guide Control Assessors on assessment techniques, documentation standards, and professional judgment. • Escalate risks, issues, or control interpretation questions to program leadership as appropriate.

🎯 Anforderungen

• 7+ years of industry experience in cybersecurity, information security, IT audit, or risk and compliance. • 2+ years of experience leading or performing cybersecurity control assessments or IT audits, with demonstrated responsibility for control testing and validation. • Bachelor’s degree in Information Security, Information Systems, Computer Science, or a related field, or equivalent professional experience. • Relevant professional certifications such as CISSP, CISM, CISA, CRISC , or equivalent strongly preferred. • Proven experience testing and evaluating security controls aligned to NIST SP 800-53 Rev. 5 and applying assessment procedures consistent with NIST SP 800-53A Rev. 5. • Experience executing repeatable, methodology-driven assessment programs across multiple organizations or systems. • Strong written and verbal communication skills, including experience presenting assessment results to executive and board-level audiences. • Maintains confidentiality and professionalism with sensitive client information.

🏖️ Vorteile

• Remote work flexibility • Professional development opportunities • Health insurance • Retirement plans