Security Consultant, Fedramp Assessment

Coalfire Dallas , TX 75201

Posted 3 weeks ago

About Coalfire

Coalfire is the cybersecurity advisor that helps private and public sector organizations avert threats, close gaps, and effectively manage risk. Our professionals are among the most talented in the industry, and each and every day, they strive to provide the unbiased assessments, advice, and innovative solutions that help our clients meet their specific challenges and build long-term strategies to protect their organizations. For nearly 20 years, we've been on the cutting-edge of one of the world's most important industries - and we're committed to making the world a safer place by solving our clients' toughest security challenges.

We're growing rapidly and are currently seeking a Security Consultant to support our Sterling, Seattle, and Denver offices.

What you'll do

You'll facilitate Security Control Assessments (SCAs) and possibly other advanced-level Continuous Monitoring Activities within cloud-based environments. To succeed in this position, you'll need a strong understanding of security-related system controls and an understanding of the various testing methods utilized to ascertain the effectiveness of those controls. You will work in a team atmosphere with an experienced Technical Project Lead, and you'll be assigned technical sections and be able to provide client-ready deliverables.

In this role, you will:

  • Execute, examine, interview, and test procedures in accordance with NIST SP 800-53A Revision 4

  • Ensure cyber security policies are adhered to and that required controls are implemented

  • Validate respective information system security plans to ensure NIST control requirements are met

  • Develop resultant SCA documentation, including but not limited to the Security Assessment Report

  • Author recommendations associated with your findings on how to improve the customer's security posture in accordance with NIST controls

What you'll bring

  • Bachelor's degree (four-year college or university) or equivalent combination of education and experience

  • At least three (3) year of experience in the IT industry, with strong familiarity with the applicable NIST Special Publications 800-37 Revision 1, 800-53 Revision 3 or 4, and 800-53A Revision 1

  • Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience

  • Ability to lead small, less complex system assessments independently

  • Ability to assist team members with proper artifact collection and detail to clients examples of artifacts that will satisfy assessment requirements

  • At least one of the following certifications: CISSP, CISA, PMP and/or Security+ certification

Bonus Points

  • Experience reviewing Nessus output, along with basic knowledge of networking components and various operating systems in a cloud environment, including UNIX and Microsoft.

  • Expertise in other Security Frameworks (ISO, NIST, COBIT, HIPAA/HITECH, etc.) and regulatory requirements

Why you'll want to join us

Coalfire's high energy, challenging, and fast-paced work environment will keep you engaged and motivated. Work-life balance is a core priority at Coalfire - we work hard and we play hard, and the two often overlap. We host family-friendly events and happy hours along with professional meetups and informal networking sessions, and we're active in our communities. Plus, we offer great benefits, including:

  • Health, dental, and vision insurance with an employer contribution

  • Flexible paid time off (employees are encouraged to spend four weeks away from the office each year)

  • A generous 401(k) plan

  • A corporate wellness program

  • Tuition reimbursement

  • A kitchen stocked with snacks, coffee, and tasty beverages

Coalfire is an EEO employer. We celebrate diversity and are committed to respecting one another, embracing individual differences, and creating an inclusive environment for all employees.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cloud / Azure Security Consultant Location Negotiable

Accenture

Posted 2 weeks ago

VIEW JOBS 3/21/2020 12:00:00 AM 2020-06-19T00:00 Join Accenture and help transform leading organizations and communities around the world. The sheer scale of our capabilities and client engagements and the way we collaborate, operate and deliver value provides an unparalleled opportunity to grow and advance. Choose Accenture, and make delivering innovative work part of your extraordinary career. People in our Client & Market career track drive profitable growth by developing market-relevant insights to increase market share or create new markets. They progress through required promotion into market-facing roles that have a direct impact on sales. Security professionals apply deep security skills to design, build and protect enterprise systems, applications, data, assets and people for Accenture and our clients. Job Description Cyber Defense Cloud professionals develop and deliver solutions that protect enterprise systems, applications and data by establishing policies, practices and tools that prevent unauthorized access, use, disclosure, modification or disruption. A professional at this position level within Accenture has the following responsibilities: Adapts existing methods and procedures to create possible alternative solutions to moderately complex problems. Understands the strategic direction set by senior management as it relates to team goals. Uses considerable judgment to determine solution and seeks guidance on complex problems. Primary upward interaction is with direct supervisor. May interact with peers and/or management levels at a client and/or within Accenture. Determines methods and procedures on new assignments with guidance. Decisions often impact the team in which they reside. Manages small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture. We are currently looking for consultants for our Security practice with experience in cloud security strategy, architecture, implementation and operations for client projects. Key Responsibilities: * Support the delivery of Accenture's security offerings related to cloud security, including security governance (security policies and procedures), security strategy (security planning), risk (risk assessments and management), cloud data protection (classification, encryption, tokenization), cloud-based identity and access management, technology/provider-specific cloud architecture (AWS, Azure, Softlayer, VMware) and monitoring/analytics for and in the cloud * Ability to map security controls to compliance requirements for cloud environments * Demonstrate ability to contribute content to business development / proposal efforts * Business development responsibilities around cloud security including requirements analysis, content development, Accenture services and leading practices alignment * Conduct cloud security strategy, readiness and discovery assessments; be familiar with cloud security frameworks, compliance requirements and security operations * Deliver services that meet Accenture Project quality specifications * Ability to take initiative to communicate, interact, and collaborate with others to ensure that all aspects of a task are addressed * Ability to quickly ramp up on new cloud security technologies and translate traditional and other cloud-related experience. Accenture Dallas TX

Security Consultant, Fedramp Assessment

Coalfire