ROC Implementation and Management, Inc
Lead Cybersecurity Consultant
ROC Implementation and Management, Inc, Gaithersburg, Maryland, us, 20883
EOE StatementWe are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.
CategoryProfessional Services
Description
OverviewSeeking an opportunity to build amazing client relationships and solve mission critical, strategic problems? We are ROCIMG, a consulting firm serving the federal government and commercial clients with a focus on strategy, transformation, program management, technology and cybersecurity. We are a rising company with rich client experiences and great references. We develop enduring partnerships with our clients to resolve complex, mission-critical challenges, and help them to accomplish their strategic and operational goals. We have a vision for becoming our customers preferred adviser and provider of digital transformation, business, technology and cybersecurity services. As we continue to grow our business, we are looking for a Lead Cybersecurity Consultant to join our delivery team.
As the Lead Cybersecurity Consultant on our team, you'll use your experience to work with diverse organizations to discover their cyber risks, understand applicable policies, and formulate mitigation plans. You'll develop practice guides, and review technical, environmental, and personnel details from organizations to assess the entire threat landscape. Then, you'll guide your client through a plan of action with presentations, white papers, and milestones. You'll work with your client to translate security concepts, so they can make the best decisions to secure their environment. This is your opportunity to act as an information security subject matter expert while broadening your skills in various emerging concepts and technologies. Join us as we help advance our client's security posture.
Position Requirements
Responsibilities
Review existing documentation of IT controls, business processes, policies, procedures, and management reports for effectiveness and sustainabilityReview, document, evaluate, and test manual and automated computer controlsConduct risk assessments on business and operational processes, procedures, and policiesInterpret assessment results and make conclusions on the adequacy and reliability of controls; develop recommendations to remediate gaps; prepare and present reports as necessaryAdvise clients on cybersecurity matters and how to address and mitigate risksConduct gap analysis via testing and recommend specific actions to fix gaps in processes and/or process managementPrioritize control projects based on severity of risk and non-complianceLead and support governance, risk and compliance related projects, e.g., policy developmentSupport marketing, sales, business development and proposal activitiesSupport recruiting, mentoring, team building and other internal operations tasks to strengthen and grow the practiceFormal Education & Certification
Minimum Bachelor's degree in Cybersecurity or technology related degreeCertified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) designations preferredKnowledge & Experience
5+ years of experience with security program assessments, risk assessments, compliance assessments, and mitigation planningStrong familiarity with cybersecurity governance and controls frameworks, such as NIST CSF, NIST 800-53, CMMC, and ISO 27000Familiarity with SOX compliance requirementsAbility to carry out assessment interviews, documentation review, and perform analysis across diverse levels of key stakeholdersAbility to develop policies, procedures, and other documentationSolid experience in testing, evaluating, and documenting controls for complianceStrong project management skillsExpertise with flowcharting software tools (e.g., Visio)Hands-on experience building reports, tools and presentations with Microsoft Word, Excel, and PowerPointAbility to develop strategy and materials to present to client stakeholders and leadershipCan adapt to shifting priorities, demands, and timelines through analytical and problem solving capabilitiesAbility to manage and collaborate with multidisciplinary teamsReacts to project adjustments and alterations promptly and efficientlyAdept at conducting research into project-related issues and productsAbility to effectively prioritize and execute tasks in a high-pressure environment is crucialExcellent verbal, interview, and diplomacy skillsExcellent written and oral communication skillsPreferred
Experience with cybersecurity strategy development, policy development, control design, control implementation, control management, audit and complianceKnowledge of threat modeling, kill chain analysis, risk optimization principlesKnowledge of system administration, network, and operating system hardening techniquesKnowledge of system life cycle management principles, including software security and usabilityProject management experienceLocation
Gaithersburg, MD; HybridThis is a consulting role and so on site work may be required in the DC-Baltimore Metropolitan regionAdditional Requirements
Education and certifications will be verified for this positionThis position requires successful completion of a background check and employment verificationUS citizenship is required for suitability investigationBenefits
Medical, Rx, Dental & Vision InsuranceCompany Paid Time Off and Paid Holidays401(k) Retirement PlanSkills Development & CertificationsEmployee Referral Program
Full-Time/Part-TimeFull-Time
SalarySalary Range: $115K - $125K, + bonusFinal salary is determined by factors including, but not limited to, relevant work experience, skills and competencies that align to the specified role, geographic location, education and certifications.
Exempt/Non-ExemptExempt
LocationGaithersburg
About the OrganizationROCIMG is focused on being the best idea development, implementation, and management consulting firm that partners with our clients to deliver their preferred future, through the efforts of excellent people while growing the economy. We develop enduring partnerships with our clients to successfully navigate and resolve complex, mission-critical challenges, and deliver results that accomplish their strategic and operational goals.
This position is currently accepting applications.
CategoryProfessional Services
Description
OverviewSeeking an opportunity to build amazing client relationships and solve mission critical, strategic problems? We are ROCIMG, a consulting firm serving the federal government and commercial clients with a focus on strategy, transformation, program management, technology and cybersecurity. We are a rising company with rich client experiences and great references. We develop enduring partnerships with our clients to resolve complex, mission-critical challenges, and help them to accomplish their strategic and operational goals. We have a vision for becoming our customers preferred adviser and provider of digital transformation, business, technology and cybersecurity services. As we continue to grow our business, we are looking for a Lead Cybersecurity Consultant to join our delivery team.
As the Lead Cybersecurity Consultant on our team, you'll use your experience to work with diverse organizations to discover their cyber risks, understand applicable policies, and formulate mitigation plans. You'll develop practice guides, and review technical, environmental, and personnel details from organizations to assess the entire threat landscape. Then, you'll guide your client through a plan of action with presentations, white papers, and milestones. You'll work with your client to translate security concepts, so they can make the best decisions to secure their environment. This is your opportunity to act as an information security subject matter expert while broadening your skills in various emerging concepts and technologies. Join us as we help advance our client's security posture.
Position Requirements
Responsibilities
Review existing documentation of IT controls, business processes, policies, procedures, and management reports for effectiveness and sustainabilityReview, document, evaluate, and test manual and automated computer controlsConduct risk assessments on business and operational processes, procedures, and policiesInterpret assessment results and make conclusions on the adequacy and reliability of controls; develop recommendations to remediate gaps; prepare and present reports as necessaryAdvise clients on cybersecurity matters and how to address and mitigate risksConduct gap analysis via testing and recommend specific actions to fix gaps in processes and/or process managementPrioritize control projects based on severity of risk and non-complianceLead and support governance, risk and compliance related projects, e.g., policy developmentSupport marketing, sales, business development and proposal activitiesSupport recruiting, mentoring, team building and other internal operations tasks to strengthen and grow the practiceFormal Education & Certification
Minimum Bachelor's degree in Cybersecurity or technology related degreeCertified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) designations preferredKnowledge & Experience
5+ years of experience with security program assessments, risk assessments, compliance assessments, and mitigation planningStrong familiarity with cybersecurity governance and controls frameworks, such as NIST CSF, NIST 800-53, CMMC, and ISO 27000Familiarity with SOX compliance requirementsAbility to carry out assessment interviews, documentation review, and perform analysis across diverse levels of key stakeholdersAbility to develop policies, procedures, and other documentationSolid experience in testing, evaluating, and documenting controls for complianceStrong project management skillsExpertise with flowcharting software tools (e.g., Visio)Hands-on experience building reports, tools and presentations with Microsoft Word, Excel, and PowerPointAbility to develop strategy and materials to present to client stakeholders and leadershipCan adapt to shifting priorities, demands, and timelines through analytical and problem solving capabilitiesAbility to manage and collaborate with multidisciplinary teamsReacts to project adjustments and alterations promptly and efficientlyAdept at conducting research into project-related issues and productsAbility to effectively prioritize and execute tasks in a high-pressure environment is crucialExcellent verbal, interview, and diplomacy skillsExcellent written and oral communication skillsPreferred
Experience with cybersecurity strategy development, policy development, control design, control implementation, control management, audit and complianceKnowledge of threat modeling, kill chain analysis, risk optimization principlesKnowledge of system administration, network, and operating system hardening techniquesKnowledge of system life cycle management principles, including software security and usabilityProject management experienceLocation
Gaithersburg, MD; HybridThis is a consulting role and so on site work may be required in the DC-Baltimore Metropolitan regionAdditional Requirements
Education and certifications will be verified for this positionThis position requires successful completion of a background check and employment verificationUS citizenship is required for suitability investigationBenefits
Medical, Rx, Dental & Vision InsuranceCompany Paid Time Off and Paid Holidays401(k) Retirement PlanSkills Development & CertificationsEmployee Referral Program
Full-Time/Part-TimeFull-Time
SalarySalary Range: $115K - $125K, + bonusFinal salary is determined by factors including, but not limited to, relevant work experience, skills and competencies that align to the specified role, geographic location, education and certifications.
Exempt/Non-ExemptExempt
LocationGaithersburg
About the OrganizationROCIMG is focused on being the best idea development, implementation, and management consulting firm that partners with our clients to deliver their preferred future, through the efforts of excellent people while growing the economy. We develop enduring partnerships with our clients to successfully navigate and resolve complex, mission-critical challenges, and deliver results that accomplish their strategic and operational goals.
This position is currently accepting applications.