[Hiring] Security and Compliance Consultant @New Charter Technologies
This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The vCISO and Compliance Consultant will be responsible for providing virtual Chief Information Security Officer (vCISO) services and leading information security governance, risk, and compliance initiatives for Cyber74 and New Charter Technologies Operating Company clientele. β’ Help clients define and implement security strategies, roadmaps, policies, and governance structures. β’ Perform cybersecurity readiness assessments, gap analyses, and maturity assessments using frameworks such as CMMC, NIST CSF, HIPAA, and NIST 800-171. β’ Provide clear, actionable recommendations to clients. β’ Collaborate with Operating Company colleagues to share security trends, risks, and best practices. Qualifications β’ 2β4+ years of experience performing security program management, technical security audits, and risk assessments. β’ Experience implementing and assessing controls aligned to CMMC, NIST CSF, HIPAA, and related frameworks and standards. β’ Minimum 1+ yearsβ experience with cloud-based concepts with an emphasis on development and auditing AWS or Azure controls. β’ Strong working knowledge of network firewalls, switches, routers, and endpoints. β’ Technical knowledge of network design, cloud platform architecture, and experience with information security governance programs and control framework concepts. Requirements β’ Experience performing cybersecurity readiness and maturity assessments. β’ Experience with other compliance frameworks (e.g., SOC, SOX, GDPR, FFIEC, PCI, or similar) is a plus. β’ Well-rounded expertise and exposure to various security technologies, including Anti-Virus, Endpoint Detection and Response (EDR), Data Loss Prevention, Intrusion Prevention, Application Whitelisting, etc. β’ Experience working with network scanning tools such as Tenable Nessus, Qualys, or Rapid-fire Tools. β’ Strong EQ with the ability to develop rapport and provide technical security and risk-related advice to both technical and non-technical audiences. Benefits β’ Starting Salary of $95,000 annual and up dependent on experience. Preferred Certifications β’ Certified Information Systems Auditor (CISA) β’ Certified in Risk and Information Systems Control (CRISC) β’ GIAC Security Essentials (GSEC) β’ Certified Information Security Manager (CISM) β’ Certified Information Systems Security Professional (CISSP) β’ CMMC Certified Professional (CCP) β’ CMMC Assessor (CCA) β’ Certified Ethical Hacker (CEH) β’ A+ β’ Network+ β’ Security+ Preferred Attributes β’ Highly organized and process driven, with the ability to bring structure to client security programs. β’ Affinity for technology and an interest in staying current with evolving threats, tools, and best practices. β’ Strong integrity with the ability to work in a highly confidential and trustworthy manner. β’ Collaborative and flexible with a consultative mindset. β’ Precise and detailed, delivering consistently high-quality written and verbal deliverables. β’ Strong desire to learn, grow, and follow direction while also taking initiative to move work forward. β’ Skilled in interfacing directly with clients and cultivating a long-term trusted advisor relationship. β’ Servant-hearted with a focus on improving the lives and security posture of customers. Apply tot his job