Evaluate and review existing Cybersecurity tools and controls to determine gaps, provide recommendations, and implement risk reduction plans.
Map capabilities of Cybersecurity tools to NIST 800-53 rev5 framework.
Develop, perform tests against tools for validation of alignment with framework.
Develop and integrate cybersecurity designs for systems and networks with multilevel security requirements in cloud, on-premises, and hybrid environments.
Plans, researches, and designs security architecture for IT systems.
Reviews system security measures and implements necessary enhancements.
Conducts regular tests and monitoring of network security.
Updates job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations.
Work closely with other architects and engineers to leverage and improve existing designs and recommend best practices and new security solutions.
Excellent communication skills to concisely communicate security risks to both technical and business audiences.
MINIMUM QUALIFICATIONS:
A bachelor’s in CS, or a related field and/or 10 years of Cyber-security experience.
Expertise in ISMS and frameworks, NIST 800-53 Rev5, ISO 27001/27002, CMMC?
Expertise in IT risks management and cyber security.
Cybersecurity architecture review experience.
Demonstrable experience in diverse cybersecurity engineering and technologies and scanning tools?
Solid understanding of generally accepted security principles and frameworks.
Design and implementation of architectural concepts and patterns (e.g., baseline, validated, and target architectures).
Extensive security design and implementation at large-scale enterprise environments .
Extensive understanding of common security vulnerabilities such as the OWASP Top Ten: SQLi, XSS, and CSRF.
Experience with legal and regulatory compliance.
CISSP (Certified Information Systems Security Professional).