EmergencyMD
Information Security Consultant - Federal (FedRAMP, NIST, CMMC)
EmergencyMD, Fairfax, Virginia, United States, 22032
Information Security Consultant, Federal (FedRAMP, NIST, CMMC)
at Tevora
Irvine, CA or Fairfax, VA
If you haven't heard of Tevora, it's because we've done our job!
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins.
What's the role?
Tevora is seeking an
Information Security Consultant
to join the
Federal
team who has a solid balance between business acumen and technical expertise. Comfortable across all disciplines of information security, this consultant will be responsible for assessing compliance and risk on a wide variety of client projects for some of the world's largest organizations.
A day in the life could include:
Lead information security risk and compliance assessments, audits, gap analyses, and remediation planning.
Actively contributing to projects with a primary focus on CMMC, FedRAMP, StateRAMP, NIST 800-53, FISMA, and NIST 800-171.
Communicating with and presenting to project stakeholders to effectively convey requirements of technical and process improvements.
Assisting in the development of customized policies, procedures, controls, disaster recovery plans, and technical documentation for applications, systems, and infrastructure.
Develop internal processes to support the overall maturity of the Federal practice.
Possess a working knowledge of IT security and various frameworks (i.e. CMMC, FedRAMP, NIST 800-30, 800-53, 800-60, 800-171, PCI DSS, NYS DFS 500).
Necessary skills and qualifications:
Bachelor's degree in Computer Science, Engineering, or a related field or equivalent professional experience.
At least one advanced cybersecurity certification such as: CISSP (preferred), CCA, CCP, PCI QSA, CISA, CISM, ISO 27001, CRISC.
BCR completion.
Minimum 4 years of experience in the information security, information technology, enterprise risk, or compliance field.
Knowledge of and hands-on experience with CMMC, FedRAMP, and NIST 800-53/NIST 800-171 audits and attestations.
Deep familiarity with, or experience as a 3PAO to obtain FedRAMP Ready or FedRAMP Authorized status for platforms, systems, and applications.
Knowledge of security architecture, infrastructure, network, and systems design.
Practical and working knowledge of common IT and security concepts including: firewall management, server management, SIEM, IDS/IPS, web proxies, access control, and authentication, with advanced knowledge in at least one of these areas.
Experience securing operating systems.
Security policy frameworks and control design.
Experience in managing policy exceptions, including working directly with the teams to document exceptions, identify compensating controls, and remediation action plans.
Bonus Points:
Connect easily with clients and colleagues to communicate effectively across business and technical boundaries to offer recommendations as an expert with best practices.
Work independently without detailed guidance.
Have proficiency in writing executive-level reports and technical documentation.
We've got you covered!
Comprehensive benefits offering (Medical, Dental, Vision).
Paid time off and holidays.
401k with Company match.
Vibrant work culture.
Cell Phone & Internet Reimbursement.
Additional requirements:
A valid driver's license is required.
Eligibility to work in the United States.
No criminal record and no bankruptcies or other negative reports on credit report.
Must work a hybrid schedule at one of our office locations (Irvine, CA or Fairfax, VA).
EEOC Statement
Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.
#J-18808-Ljbffr
at Tevora
Irvine, CA or Fairfax, VA
If you haven't heard of Tevora, it's because we've done our job!
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins.
What's the role?
Tevora is seeking an
Information Security Consultant
to join the
Federal
team who has a solid balance between business acumen and technical expertise. Comfortable across all disciplines of information security, this consultant will be responsible for assessing compliance and risk on a wide variety of client projects for some of the world's largest organizations.
A day in the life could include:
Lead information security risk and compliance assessments, audits, gap analyses, and remediation planning.
Actively contributing to projects with a primary focus on CMMC, FedRAMP, StateRAMP, NIST 800-53, FISMA, and NIST 800-171.
Communicating with and presenting to project stakeholders to effectively convey requirements of technical and process improvements.
Assisting in the development of customized policies, procedures, controls, disaster recovery plans, and technical documentation for applications, systems, and infrastructure.
Develop internal processes to support the overall maturity of the Federal practice.
Possess a working knowledge of IT security and various frameworks (i.e. CMMC, FedRAMP, NIST 800-30, 800-53, 800-60, 800-171, PCI DSS, NYS DFS 500).
Necessary skills and qualifications:
Bachelor's degree in Computer Science, Engineering, or a related field or equivalent professional experience.
At least one advanced cybersecurity certification such as: CISSP (preferred), CCA, CCP, PCI QSA, CISA, CISM, ISO 27001, CRISC.
BCR completion.
Minimum 4 years of experience in the information security, information technology, enterprise risk, or compliance field.
Knowledge of and hands-on experience with CMMC, FedRAMP, and NIST 800-53/NIST 800-171 audits and attestations.
Deep familiarity with, or experience as a 3PAO to obtain FedRAMP Ready or FedRAMP Authorized status for platforms, systems, and applications.
Knowledge of security architecture, infrastructure, network, and systems design.
Practical and working knowledge of common IT and security concepts including: firewall management, server management, SIEM, IDS/IPS, web proxies, access control, and authentication, with advanced knowledge in at least one of these areas.
Experience securing operating systems.
Security policy frameworks and control design.
Experience in managing policy exceptions, including working directly with the teams to document exceptions, identify compensating controls, and remediation action plans.
Bonus Points:
Connect easily with clients and colleagues to communicate effectively across business and technical boundaries to offer recommendations as an expert with best practices.
Work independently without detailed guidance.
Have proficiency in writing executive-level reports and technical documentation.
We've got you covered!
Comprehensive benefits offering (Medical, Dental, Vision).
Paid time off and holidays.
401k with Company match.
Vibrant work culture.
Cell Phone & Internet Reimbursement.
Additional requirements:
A valid driver's license is required.
Eligibility to work in the United States.
No criminal record and no bankruptcies or other negative reports on credit report.
Must work a hybrid schedule at one of our office locations (Irvine, CA or Fairfax, VA).
EEOC Statement
Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.
#J-18808-Ljbffr