Consultant

• Apply fundamental cybersecurity principles and concepts to tasks and projects
• Assess and implement NIST Cybersecurity Framework (CSF) guidelines, standards, and best practices
• Review disaster recovery capabilities (backups), Endpoint Detection and Response (EDR), Web Application Firewall (WAF), application whitelisting, host-based firewalls, etc.
• Provide continuous monitoring of end-user devices to detect and respond to cyber threats
• Understand Governance Risk and Compliance (GRC) requirements (NIST, FISMA, OMB) and align IT with business objectives
• Apply NIST Risk Management Framework (RMF), NIST SP 800-53 controls, Assessment and Authorization processes, POA&M management, System Security Plan, FedRAMP, and SOC 2
• Perform cybersecurity risk management, research and development, and leading practices
• Gather and organize technical information about an organization's mission, existing security products, and ongoing programs
• Develop strategies, roadmaps, assessments, and policies
• Perform password auditing, network and web vulnerability scanning, virus management, and intrusion detection
• Monitor change management documentation to identify potential impacts to security testing
• Author risk narratives to communicate key risks to government CISO and security auditors
• Support risk audits and assessments and provide recommendations for application design
• Work with solution architects for security requirements on network architecture

Senior Cyber Consultant – ISSO/ISSM

Construction Managing Consultant