Senior Cybersecurity Consultant

Gray Analytics was founded in 2018 with a vision to bring innovative and creative solutions in the cybersecurity, IT, engineering, and scientific spheres. Our customers span across the commercial and federal domains with our goal being to bring excellent customer service to our clients and employees. Without the bureaucracy that often exists in larger corporations, Gray Analytics offers increased work flexibility, visibility in company progress, and greater opportunities for advancement. It's with our employees' support that we can help our clients achieve mission and operational success. At Gray Analytics, our goal is simple: to help our country, its businesses, and its organizations improve security in the Cyber realm. Period. Position Description: Gray Analytics is seeking a motivated and dedicated Senior Cybersecurity Consultant to assess, advise, and support commercial clients. Location: Remote in US Schedule: Fully remote, with travel as needed to client sites; as well as to attend meetings or conferences as approved by leadership. Status: Full-time exempt Basic Qualifications: Strong understanding and experience with Cybersecurity Risk Management principles with an emphasis on Framework Adoptions. Specific expertise in at least one of the below frameworks required: NIST Cybersecurity Framework (NIST CSF) NIST Risk Management Framework (NIST RMF) DoD Cybersecurity Policies including DFARS 7012, NIST 800-171 and CMMC 2.0 HIPAA Security Rule / HITRUST ISO 27001 System and Organizational Controls (SOC) Center for Internet Security (CIS) Cybersecurity Maturity Model Certification Program (CMMC) In-depth understanding of cyber security policy, tools, threat mitigation techniques, network topologies, and secure network design. Ability to identify project requirements, develop project costs/schedules, coordinate technical activities, and implement risk mitigation activities. Experience leading or conducting cyber assessments. Experience in designing and reviewing system architecture designs. Ability to clearly present and communicate technical approaches and findings. Excellent technical writing and verbal communication skills. Ability to present findings and recommendations to an executive team or board. CMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA) required. Ability and experience conducting Risk Assessments to include NIST 800-30 and/or CIS RAM methodologies. Desired Qualifications: At least 10 years of relevant experience or a Bachelor's degree in a Business Management/Program Management or equivalent field from an ABET accredited school is required. Salary Considerations will be based on technical qualifications and experiences Security Requirements: Candidate must be a US Citizen with a current US DoD Secret Clearance or possess/meet the eligibility requirements to obtain and maintain a Secret Clearance. Potential Certifications: Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified Information Privacy Professional (CIPP) CMMC - Registered Professional (RP)/Certified Professional (CCP)/Assessor (CCA) Certified Ethical Hacker (CEH) or equivalent Certified Incident Handler (ECIH) or equivalent COMPTIA Security, GIAC Security Essentials (GSEC), or equivalent Gray Analytics values our employees as our most important resource. To showcase these values, we offer not only traditional medical, disability, life, etc. coverages that begin on day one of employment, but also unique benefits to improve our employees' quality of life. Some of these unique benefits include: A PTO policy based on total years of experience, not years of service to the company. PTO is available for use immediately at hire, subject to company needs. Eligibility for 401K contributions and company matching, Pet Insurance through Spot, Flexible Spending Account, and Tuition and Professional Development Funds begin on day one of employment. Charitable donations program on a yearly and quarterly basis where employees can nominate a non-profit of choice to receive donations. Gray Analytics is an Equal Opportunity Employer and VEVRAA Federal Contractor. This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, gender identity, sexual orientation, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status or disability. Gray Analytics, Inc. welcomes minority and veteran applicants.