Cybersecurity Assessor / Analyst
Become an integral part of our growing cybersecurity practice. At CyberNINES, you will assist in security assessments of our clients, gather and aggregate assessment data for trends analysis, develop and maintain documentation to support the assessment process, and actively work to ensure the assessment process matures in line with industry and regulatory requirements and expectations.
Each security assessment will include, at a minimum, the following activities: Documentation Review, Interviews with company Stakeholders, Security Testing of IT Assets, Physical Control (On-Site) Review, and Process Development/ Participation.
Join the CyberNINES team as a Cybersecurity Assessor or Analyst!
Qualifications: Education and Experience:
- A Degree in Engineering, Computer Science, related field or relevant experience.
- At least 2 years of experience in cybersecurity protocols, operational, and/or technical activities.
- At least 2 years of experience in National Institute of Standards (NIST) cybersecurity standards and best practices.
- At least 1 year conducting IT security assessments in an academic, military or business environment.
Knowledge:
- NIST 800 series guidance for network security.
- ISO 27001 series guidance for controls
- CMMC series guidance for practices
- of security assessments and appropriate tools.
- of potential vulnerabilities and threats to existing web, applications, database, and operating system technologies
Skills/Abilities:
- Excellent verbal and written communication skills
- Excellent organizational and analytical skills
- Ability to express thoughts clearly
- Ability to collaborate in a team environment
Certifications
Possess (or be able to obtain within 6 months) one industry-recognized cybersecurity certification, such as: Certified Information Systems Security Professional (CISSP), Certification Information System Auditor (CISA), GIAC Certified Incident Handler (GCIH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), Offensive Security Web Expert (OSWE), Certified Ethical Hacker (CEH), Security+ or similar Certification and Authorization Professional (CAP).
About CyberNINES:
CyberNINES provides cybersecurity consultation and managed services to small and medium sized companies, with an initial and significant focus on those companies supporting the U.S Department of Defense (DoD). Services include assessing, securing, and protecting companies from increasing cybersecurity threats. With 50% of the CyberNINES
employees either retired military or veterans, there is a strong sense of mission for protecting our customer’s critical infrastructure and the DoD supply chain.
CyberNINES has its headquarters in Madison, WI with offices in California, Connecticut and Minnesota. We work and collaborate online for the most part so this position could be considered remote working. However, client visits will be necessary, so a valid driver’s license is required.
Benefits:
- Remote work
- Medical and Dental Insurance
- Life Insurance and Short/Long Term Disability
- 401K Retirement Plan
- 21 Paid Time Off days including Vacation, Sick/Personal Days, and Holidays
- Paid training/testing for certifications
- Relaxed dress code and work environment
- Company-sponsored social events throughout the year