Valence Surface Technologies
Responsibilities
Ensure compliance with all Department of Defense and Aerospace cyber security controls and regulations related to CMMC, NIST 800-171; ISO; DFARs. Develop/Modify Valence cyber security related standards, policies, and procedures to mitigate the compromise of systems/data and meet compliance controls and regulations. Conduct business risk assessments regarding cyber security related controls and capability to meet required Department of Defense and Aerospace industry regulations. Manage internal/external network penetration test, vulnerability/threat scans, and phishing test exercises. Manage and coordinate the execution of risk, gap closure, security improvements to mitigate the business impact from cyber related attacks. Manage and coordinate contracted Virtual Security Operations Center (vSOC) services and processes. Create required compliance documents such as POAM, Site Security Plan, Security Reviews, and OEM/Customer compliance surveys. Prepare for CMMC compliance audits to achieve required certifications. Create and Manage employee Cyber Security training campaigns. Investigate security incidents across multiple platforms and work with team to resolve in a timely manner. Knowledge, Skills, and Experience
Minimum 7 years of IT experience (infrastructure, networking, applications) Minimum 2 years of experience in information security and regulatory compliance Knowledge of NIST 800-171 controls and Cybersecurity Maturity Model Certification (CMMC) model requirements Prefer experience in the Aerospace, Defense, and/or Space industries Strong knowledge of core IT and Security infrastructures including SIEM, IAM, SOC Monitoring, and Threat & Vulnerability scanning At least one year of experience in Cyber incident response planning and execution At least one year of experience in Amazon Web Service and/or Azure Government environments Strong verbal and written communication skills and ability to work collaboratively with business leaders at all levels and third party IT suppliers Strong demonstrated project management skills. Must have at least one year of experience with Microsoft 365 suite of management and endpoint protection solutions including Intune; Microsoft Azure security, enterprise applications, and associated monitoring tools; and experience managing Sonicwall security, e.g., designing and applying access control lists Basic Qualifications
Master’s or Bachelor’s degree in MIS or Computer Science Masters degree preferred in appropriate discipline Minimum of 7 years IT professional experience Required to have one of these Certifications: CompTIA; CISSP; CISA; CISM Six Sigma Green Belt certification preferred Location / Compensation
Los Angeles, CA or Seattle, WA or Wichita, KS or Springfield, MA Annual Compensation range: $87,775 - $110,775 Management Incentive Plan: 10% Equal Opportunity Employer. This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
#J-18808-Ljbffr
Ensure compliance with all Department of Defense and Aerospace cyber security controls and regulations related to CMMC, NIST 800-171; ISO; DFARs. Develop/Modify Valence cyber security related standards, policies, and procedures to mitigate the compromise of systems/data and meet compliance controls and regulations. Conduct business risk assessments regarding cyber security related controls and capability to meet required Department of Defense and Aerospace industry regulations. Manage internal/external network penetration test, vulnerability/threat scans, and phishing test exercises. Manage and coordinate the execution of risk, gap closure, security improvements to mitigate the business impact from cyber related attacks. Manage and coordinate contracted Virtual Security Operations Center (vSOC) services and processes. Create required compliance documents such as POAM, Site Security Plan, Security Reviews, and OEM/Customer compliance surveys. Prepare for CMMC compliance audits to achieve required certifications. Create and Manage employee Cyber Security training campaigns. Investigate security incidents across multiple platforms and work with team to resolve in a timely manner. Knowledge, Skills, and Experience
Minimum 7 years of IT experience (infrastructure, networking, applications) Minimum 2 years of experience in information security and regulatory compliance Knowledge of NIST 800-171 controls and Cybersecurity Maturity Model Certification (CMMC) model requirements Prefer experience in the Aerospace, Defense, and/or Space industries Strong knowledge of core IT and Security infrastructures including SIEM, IAM, SOC Monitoring, and Threat & Vulnerability scanning At least one year of experience in Cyber incident response planning and execution At least one year of experience in Amazon Web Service and/or Azure Government environments Strong verbal and written communication skills and ability to work collaboratively with business leaders at all levels and third party IT suppliers Strong demonstrated project management skills. Must have at least one year of experience with Microsoft 365 suite of management and endpoint protection solutions including Intune; Microsoft Azure security, enterprise applications, and associated monitoring tools; and experience managing Sonicwall security, e.g., designing and applying access control lists Basic Qualifications
Master’s or Bachelor’s degree in MIS or Computer Science Masters degree preferred in appropriate discipline Minimum of 7 years IT professional experience Required to have one of these Certifications: CompTIA; CISSP; CISA; CISM Six Sigma Green Belt certification preferred Location / Compensation
Los Angeles, CA or Seattle, WA or Wichita, KS or Springfield, MA Annual Compensation range: $87,775 - $110,775 Management Incentive Plan: 10% Equal Opportunity Employer. This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
#J-18808-Ljbffr