"Alerted.org

Senior Cybersecurity Specialist

Back to search

Posted: 8/21/2025

Location Name: Los Angeles Area

Wage Max: 150,000.00

Wage Min: 135,000.00

Position Type: Full-Time

COMPANY OVERVIEW

Join our award-winning team at Information Management Resources, Inc. (IMRI), a small business leader in the technology industry known for our commitment to innovation, excellence, and authenticity. Founded in 1992, IMRI has been at the forefront of delivering advanced cybersecurity and IT solutions, safeguarding organizations against evolving threats. We have built a reputation for our expertise in Cybersecurity, Digital Transformation, Strategic Business Consulting, and Staff Augmentation. Guided by our core values of innovation, excellence, and a solution-driven mindset, we have served a diverse portfolio of customers that includes federal agencies, state and local governments, and Fortune 1000 companies.

At IMRI, we recognize the integral part our employees play in our ongoing success. To support this, we offer a comprehensive benefits package, tailored to meet the individual needs of our employees. We are committed to promoting their overall well-being and equipping them with the necessary tools to flourish in their careers. We welcome you to be a part of our ongoing mission as we continue to navigate the digital landscape, committed to empowering organizations with our innovative solutions.

For more than 33 years, IMRI has been a trusted partner delivering innovative technology and cybersecurity solutions that empower organizations to achieve mission success. We are seeking aSenior Cybersecurity Specialistto join our team and lead efforts in aligning enterprise security programs with theNIST Cybersecurity Framework (CSF) 2.0, driving governance, compliance, and program maturity.

Position Overview

The Senior Cybersecurity Specialist will serve as a subject matter expert in governance, risk, and compliance (GRC). This role will be responsible for designing and implementing cybersecurity governance frameworks, conducting NIST CSF 2.0 maturity assessments, and developing executive-level reports and dashboards. The ideal candidate will bring extensive experience in policy development, compliance, and enterprise-wide cybersecurity program design.

Key Responsibilities

Governance & Policy Development

+ Review existing cybersecurity policies, procedures, standards, and risk assessments.

+ Identify policy gaps againstNIST CSF 2.0and recommend updates.

+ Draft and maintain governance framework documents, SOPs, and security policies.

+ Ensure compliance with audit and regulatory requirements.

NIST CSF Alignment

+ Engage stakeholders across IT, security, compliance, and business units.

+ Review and validate2024 NIST Gap Assessment results.

+ Map identified gaps to NIST CSF categories and/orNIST 800-53 controls.

+ Prioritize gaps based on risk, regulatory impact, and business dependencies.

+ Develop detailed remediation plans including resources, timelines, and responsible parties.

Cybersecurity Assessment & Maturity Modeling

+ Conduct interviews with IT, compliance, and business unit leaders.

+ Validate documentation against observed processes and supporting evidence.

+ Score cybersecurity program maturity against NIST CSF categories/subcategories using a recognized maturity scale (e.g., 1–5: Partial to Adaptive).

+ Compare maturity levels year-over-year to track improvements or regression.

Executive Reporting & Communication

+ Create and deliver a comprehensiveCybersecurity Maturity Assessment Report, including:

+ Executive summary

+ Maturity scorecard

+ Gap and risk identification

+ Remediation recommendations with risk prioritization

+ Develop metrics and executive dashboards for ongoing program tracking.

+ Present findings and recommendations in executive-level briefings.

Qualifications & Experience

+ 7+ years of experience in cybersecurity, with at least 3 years in governance, risk, and compliance (GRC).

+ Deep expertise inNIST CSF (1.1 & 2.0)andNIST 800-53integration.

+ Proven experience developing and implementing governance frameworks, SOPs, and policy documentation.

+ Experience in compliance and audit processes across regulated industries.

+ Strong understanding of enterprise systems, interdependencies, and risk prioritization.

+ Ability to design executive-level dashboards and metrics for reporting.

+ Exceptional communication skills, with experience presenting findings to executive leadership.

+ Relevant certifications (CISSP, CISM, CRISC, CGEIT, or equivalent) strongly preferred.

IMRI offers top-tier benefits that include: medical coverage through nationally recognized carriers, ancillary coverages, paid vacation and sick leave in compliance with all state and local laws, 401(k) with company match, company paid life insurance and LTD, and several additional voluntary coverages.

Pay will be commensurate with the experience, skills, and qualifications that the candidate brings to the position.

EQUAL EMPLOYMENT OPPORTUNITY

EEO/Affirmative Action Statement and Non-Discrimination Policy IMRI is an Equal Employment Opportunity employer committed to maintaining a non-discriminatory, diverse work environment. In accordance with Title VII of the Civil Rights Act of 1964, Section 503 of the Rehabilitation Act of 1973, Vietnam Era Veteran's Readjustment Assistance Act of 1974 (VEVRAA), Americans with Disabilities) (ADA), and other federal, state, and local anti-discrimination laws, IMRI does not unlawfully discriminate against any person on the basis of race, color, religion, sex, national origin, ancestry, genetic information, age, marital status, sexual orientation, physical or mental disability, or status as a special disabled veteran or other veteran. IMRI will take affirmative action to assure equal opportunity for employment is provided with regard to all personnel actions. This is including but not limited to: recruitment, selection, compensation, benefits, training, promotion, demotion, layoff, termination and all other terms and conditions of employment.