- HUB International (Charlotte, NC)
- …in security engineering or DevSecOps. + Strong understanding of **security frameworks** such as ** NIST ** , **CIS** , and **OWASP Top 10** . + Experience in cloud ... security, including public cloud (AWS, Azure, GCP) and cloud-native applications. + Demonstrated ability to work with development and operations teams to implement security controls in a DevOps environment. **Teamwork & Collaboration Expectations** +… more
- BOOZ, ALLEN & HAMILTON, INC. (Reston, VA)
- …tools such as ACAS, SCAP, STIGs or SRGs, eMASS, and Xacta + Experience with NIST SP 800-53, CNSSI 1253, and artifact generation, SSPs, POA & Ms, SAPs, risk ... assessments, and continuous monitoring + TS / SCI clearance + Bachelor's degree in Cybersecurity or IT + Security+ DoD 8570 Level II Certification Nice If You Have: + Experience with DevSecOps, Path-to-Production, and CI / CD + Experience administering Red Hat… more
- Highmark Health (Pittsburgh, PA)
- …laws, regulations, and industry requirements supporting a broad range of frameworks including NIST , HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, NCQA, the BCBSA, etc. ... The incumbent prepares and executes procedures associated with improving upon existing risk treatment activities including, but not limited to, enterprise policies, privacy operations, business resiliency and continuity planning, records and information… more
- ManTech (Washington, DC)
- …information technology and communications for cybersecurity in accordance with NIST Framework, JCIDS System Survivability, DoD 8500 series, DoD Cybersecurity ... Test & Evaluation (T&E), Cyber Threat Intelligence, Navy Cybersafe, Navy Information Assurance /Technical Authority Board standards and NAVSEA Enclave policy + Support efforts in cybersecurity for the definition of system security requirements, risk… more
- The Boeing Company (Seattle, WA)
- …on cost and compliance + Oversee compliance with standards (eg, ISO 27001, NIST 800-53, SOC2, FedRAMP, etc.) + Lead audit readiness and risk/compliance assurance ... across cloud platforms + Monitor and remediate compliance deviations + Govern vendor relationships, establishing and maintaining partnerships that align with our strategic objectives and drive value for the organization **Basic Qualifications (Required… more
- The MITRE Corporation (Mclean, VA)
- …government leaders and technical peers. + Experience implementing the RMF, NIST SP 800-53, Security Technical Implementation Guides (STIGs) and Security Content ... Automation Protocol (SCAP) Compliance Checker. + Full understanding of Classified Infrastructure and how to apply the A&A process. + Knowledge of technical solutions related to the A&A process. + In accordance with DoD 8570.01M, the selected candidate must… more
- KBR (Colorado Springs, CO)
- …+ Familiarity with DoD cybersecurity compliance frameworks such as RMF, STIGs, and NIST standards + Certifications such as CompTIA Security+, ITIL, or AWS Certified ... SysOps Administrator Basic Compensations: $63,100 - $94,600 (For The Colorado Springs Area Only) The offered rate will be based on the selected candidate's knowledge, skills, abilities and/or experience and in consideration of internal parity. Additional… more
- McKinstry (Seattle, WA)
- …scripting and automation (PowerShell, Bash). + Familiarity with regulatory frameworks (eg, NIST , ISO 27001, SOC 2, CIA). + Experience with modern security ... architectures such as Zero Trust, XDR, Identity, and SASE. + Previous work experience in helping deliver bar raising value to organizations with an existing security framework in place. **PeopleFirst Benefits** **When it comes to the basics, we have you… more
- Northrop Grumman (Redondo Beach, CA)
- …Must be familiar with and be able to apply industry-standard security guidance ( NIST , IEEE, etc.) * Expert knowledge of security design, development, and testing ... methodologies * Experience in application of standard DOD security practices such as: STIG compliance and System accreditation implementation efforts * Demonstrated experience with the Systems Development Lifecycle and successfully supporting major reviews *… more
- Cognizant (Trenton, NJ)
- …standards such as ISO 27001 (ISMS), ISO 31000 (Risk Management), HITRUST CSF, NIST Cybersecurity Framework, and SOC Type 1/2. + Demonstrated ability to lead ... cross-functional security initiatives. + Strong auditing skills and ability to independently manage risk assessments and security projects. + Proficiency in scripting or automation (eg, CL, SQL, Python, or shell scripting) for security monitoring and… more