Security Risk Assessment Engineer
Arlington, TX, United States
Security Risk Assessment Engineer - (731) Share this job as a link in your status update to LinkedIn.
Job Title
Security Risk Assessment Engineer
Location
Arlington - Arlington, VA 22209 US (Primary)
Job Type
Full-Time
Category
Information Technology
Experienced (Non-Manager)
Travel Required
50 - 75%
# of Hires Needed
1
No
Level of Clearance Required
N/A
Job Description
We are looking for an experienced Security Risk Assessment/ Remediation Specialist to support our cyber security assessment program. This role involves conducting in-depth assessments of clients' cybersecurity programs around the globe, focusing on security governance, security architecture, cyber defense, and security risk management. The ideal candidate will have a proven track record in conducting comprehensive assessment along with hand on experience in penetration testing, and the ability to develop and implement effective remediation strategies.
Major Responsibilities :
Conduct comprehensive assessments of clients’ cybersecurity programs, evaluating their security governance, architecture, cyber defense mechanisms, and risk management practices.
Provide expert analysis and feedback on the effectiveness of clients' cybersecurity measures, identifying gaps and recommending improvements aligned with best practices and regulatory requirements.
Provide a detailed high-level overview of clients’ organization’s program maturity, areas of strength, opportunities for improvement, gap analysis and implementation roadmap.
Lead cybersecurity workshops and training sessions for clients, focusing on enhancing awareness and understanding of Cloud Security Architecture, Application Security, Supply Chain Risk Management, and Threat Intelligence
Perform penetration testing to identify vulnerabilities in clients' IT infrastructure, applications, and processes. This includes network penetration, web and mobile application testing, source code reviews, and social engineering tests.
Analyze findings from assessments and penetration tests to determine the impact of detected vulnerabilities and work closely with clients to implement remediation strategies, providing guidance on best practices for security enhancements and risk mitigation.
Qualifications :
Bachelor’s degree in information security, Computer Science, Information Systems, or a related field.
A minimum of 5 - 10 years of experience in cybersecurity, with a proven track record in program assessment, penetration testing, and remediation is required.
Expert knowledge of security frameworks and standards such as NIST, ISO 27001, and CIS, with the ability to tailor assessments to specific industry regulations and requirements.
Relevant professional certifications, such as CISSP, OSCP, CEH, or CISM, are highly desirable.
Strong communication and interpersonal abilities, with the skill to articulate complex security issues to non-technical stakeholders.
Willingness to travel 50% internationally to client sites as needed.
This job description is a summary of the typical functions of the job, not an exhaustive or comprehensive list of all possible job responsibilities, tasks, and duties. CRDF Global reserves the right to amend and change job descriptions and job responsibilities to meet business and organizational needs as necessary. This position requires frequent travel to conduct on-site assessments, penetration tests, and remediation support for clients. Flexibility to work outside of traditional office hours to meet client needs and deadlines.
CRDF Global is an Equal Opportunity Employer (EOE). CRDF Global provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran, or disabled status. All positions require US work authorization and CRDF Global does not provide employment visa sponsorship. Unless otherwise stated, all positions are based in our Arlington, Virginia location. We work in a hybrid environment that provides employees a weekly mix of in-office and remote work.
Commitment to Equal Opportunity
CRDF Global is an Equal Opportunity Employer (EOE). CRDF Global provides equal employment opportunities to all qualified applicants without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran, or disabled status.
If you require a reasonable accommodation to complete the application process, please contact Human Resources at [email protected]
To learn more about your EEO rights as an applicant, please view the following:
#J-18808-Ljbffr