Idexcel · 3 hours ago
Cyber Security Engineer
Cary, NC
Contract
Remote
Senior Level, Lead/Staff
10+ years exp
Maximize your interview chancesCloud ComputingInformation Technology
Hiring Manager
Piyush Sagar (LION)
Insider Connection @Idexcel
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Actively lead and manage project update briefings, working sessions, and stakeholder meetings.
Conduct gap analyses, risk assessments, and other analytical assessments.
Apply systems engineering discipline.
Actively lead and manage stakeholder communication regarding risk management activities.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Third Party Cyber Risk Management Resource
Design and administer procedures in the organization that sustain the security of the organization’s data and access to its technology and communication systems.
Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization’s systems and the data contained in them.
Actively lead and manage project update briefings, working sessions, and stakeholder meetings.
Conduct gap analyses, risk assessments, and other analytical assessments.
Apply systems engineering discipline.
Actively lead and manage stakeholder communication regarding risk management activities.
Designing, developing, implementing, executing, and improving third-party cyber risk management strategy and practices (public and/or private sector).
Adapting and implementing industry cybersecurity frameworks and standards (e.g., ISO 27001, NIST CSF, NIST 800-53, NIST 800-171, CIS 18, Zero Trust Principles, FedRAMP).
Assessing supply chain risks based on recognized audit reports (e.g., SOC 2 Type II) and/or questionnaire responses.
Managing and instructing diverse teams with varying levels of subject matter expertise.
Handling competing priorities to ensure timely completion of work.
Communicating with cross-functional leadership and stakeholders on third-party risk management strategy and risks.
Learning on the job to expand knowledge for self and team members.
Working with third-party risk assessment platforms (e.g., Process Unity GRX).
Working with risk management platforms (e.g., Diligent RSAM).
Technical writing.
Contract review and negotiations.
10+ years of experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols.
Bachelor’s, Master’s (preferred), PhD, or JD in Computer Science, Information Technology, or Information Security.
One or more required certifications: CISSP, CCSK/CCSP, PMP, and/or CISA certifications.
CRISC - Certified in Risk and Information Systems Control.
CISM - Certified Information Security Manager.
Preferred
Experience in both public and private sectors.
Proximity (<50 miles) to Gatehouse (Falls Church, VA) or Aerial (Morrisville, NC) for in-person activities.
Familiarity with CyberGRX (now Process Unity GRX) and Diligent RSAM.
Company
Idexcel
Idexcel is a Professional Services and Technology Solutions provider specializing in Cloud Services, Cloud Native Services, Data Platforms and Intelligence, Automation & AI.
501-1,000 employees
H1B Sponsorship
Idexcel has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (89)
2022 (192)
2021 (195)
2020 (247)
Funding
Current Stage
Late StageCompany data provided by crunchbase
