Cybersecurity Lead - GRC Job at Saliense Consulting LLC in Lehi

Position: Information Assurance Lead - GRC

Location: Arlington, VA

Job Summary:

Saliense is a rapidly growing Management and Technology Consulting Solutions provider. We work to solve our client’s toughest challenges within the Defense, Civilian, Financial, and Healthcare industries.

Why Saliense?

We offer excellent compensation packages with plenty of opportunities for advancement, including 100% paid employee Healthcare premiums, 401K match, and 20 days of paid leave per year.

Client Location: Arlington, VA

Education/Certifications:

Bachelors in Information Assurance/Cybersecurity/Computer Science

Clearance:

Secret Clearance or Above

Duties and Responsibilities:

• At least ten (10) years working in an Information Assurance role, ideally as an ISSE or ISSM.
• Provide full analysis on the enterprise security posture to include:
• Enterprise Vulnerability Remediation
• Building ATO Packages
• Analysis of RMF Security Controls
• Implementation of IA Security Guidelines and Policy
• Leveraging SIEM Tools for Analysis on Endpoints
• Intrusion Detection Systems (IDS) and Event Management
• Implementing and Leveraging a Zero Trust Framework
• Conduct regular assessments of the organization's security posture, identifying vulnerabilities and recommending remediation strategies.
• Oversee the design, implementation, and maintenance of cybersecurity measures.
• Act as a subject matter expert on cybersecurity matters, providing guidance and support to internal stakeholders and external clients as needed.
• Handle security incidents and breaches, leading investigations, coordinating response efforts, and implementing measures to prevent future occurrences.
• At least three (3) years of experience managing technical staff.
• Experience with Information Assurance guidance from various Department of Defense and National Institute of Standards (NIST) instructions.
• Provide oversight performing security test and evaluations, RMF security certification and accreditation of systems, networks, and sites.
• Experience performing security test and evaluations (certification and accreditation testing), developing plans and procedures to implement a secure cyber environment.