- University of Virginia (Charlottesville, VA)
- …the health system. This role will oversee and continuously mature the information security risk management program including assessment of cyber and IT ... The Director Information Security - Governance, Risk , and Compliance (GRC) will lead the IT Governance, Risk , and Compliance teams and oversee the… more
- Navy Federal Credit Union (Vienna, VA)
- Overview The Asset Risk Assessment (ARA) program discovers, identifies, and reports on NFCU's overall IT Business Application risk posture to improve risk ... types of material/media Qualifications + Currently pursuing a bachelor's degree in information technology, Computer Science, Risk Management, or a related field… more
- Prime Therapeutics (Richmond, VA)
- …the future of pharmacy with us. **Job Posting Title** Senior Compliance Analyst ( Risk Assessment and Oversight) - Remote **Job Description** The Senior ... gap closures throughout the business, partnering to facilitate company-wide Compliance Risk Assessment , and conducting new and ongoing compliance oversight… more
- Koniag Government Services (Alexandria, VA)
- …(or equivalent work experience). + 15+ years of experience in cybersecurity compliance, security assessment , or risk management. + Hands-on expertise with ... Koniag Government Services company **,** is seeking an Open Security Controls Assessment Language SME with an...to support the design, implementation, and optimization of automated security compliance and risk management solutions. The… more
- Navy Federal Credit Union (Vienna, VA)
- …the enterprise. The Standards Management Team works to ensure that NFCU Information Security Documents (Policies, Instructions, Standards, and Procedures) are ... effectively managed to help guide the continued security and confidentiality of member and employee information...Skills: + Coursework, projects, and/or work experience related to security risk and controls management and/or cybersecurity… more
- Leidos (Ashburn, VA)
- …in Governance, Risk and Compliance Certification (CGRC) + ISC2 Certified Information Systems Security Professional (CISSP) + ISACA Certified Information ... may include creating security documentation (eg, System Security Plan, Security Assessment Report)...of the following policies: NIST SP 800-37, Rev 2, Risk Management Framework for Information Systems and… more
- General Dynamics Information Technology (Sterling, VA)
- …designated Security Control Assessors (SCA) while acting as a member of the security assessment test team + Ensuring the remediation of any findings assigned ... **Public Trust/Other Required:** None **Job Family:** Cyber and IT Risk Management **Skills:** Information Assurance, Information ...to engineering as documented in the Security Assessment Report (SAR) and its Plan… more
- TekSynap (Fort Belvoir, VA)
- …+ Serve as a senior technical Reviewer across one or more assessment domains including Boundary Security , Network Infrastructure, DNS, Virtualization, ... + Support Traditional Security Reviews by applying SPēD-aligned security fundamentals, assessing personnel, physical, information , industrial, and overall… more
- Steampunk (Mclean, VA)
- …cATO, and continuous monitoring activities to include security documentation, audit log, security incidents, and risk assessment . + Review and manage ... of the program's cyber security hygiene, DevSecOps, Risk Management Framework (RMF), Assessment and Authorization...SP 800-37 Risk Management Framework (RMF) for Information Systems and Organization, NIST SP 800-53 Security… more
- Shuvel Digital (Vienna, VA)
- Description: The IT Risk and Compliance Analyst will carry out IT security assessment activities including IT risk assessments and security reviews ... as CISA, CISM, CRISC, or CISSP + Experience performing security assessment of SaaS services + Knowledgeable... security tools/technologies to collect and maintain security and risk information +… more