Serve as a member of Sword's GRC team, contributing to security compliance across all products and services.
Define and maintain the CMMC assessment boundary, working across infrastructure, engineering, and business teams to ensure the scope is accurate and defensible.
Translate identified gaps into prioritized remediation tasks with clear ownership, for audiences ranging from DevOps engineers to clinical operations managers.
Sword Health is building AI to heal billions and unlock humanity’s full potential. As both a clinical-centric frontier AI lab and an applied AI platform, Sword is reimagining how care is delivered at scale. They have over 700,000 members across three continents and have raised more than $500 million from leading investors.
Deliver world-class cyber security assessment and advisory services while ensuring customer satisfaction.
Work effectively as a team member on large engagements and remain current on technical knowledge.
Demonstrate GuidePoint’s Core Values at all times: Take Charge and Complete Our Mission.
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1,200 employees and focus on core values to establish an enjoyable workplace atmosphere.
Manage IT audit and assurance engagements, including SOC 1, SOC 2, SOC 3, SOC for Cybersecurity, HITRUST, HIPAA, and other compliance assessments.
Collaborate with senior team members and Partners on risk assessments, audit planning, and reporting.
Lead day-to-day engagement activities, providing guidance, oversight, and feedback to staff and seniors.
Insight Assurance is a global audit firm transforming how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals, they are one of the fastest-growing global audit firms with 170+ professionals supporting nearly 2,000 clients across the Americas, EMEA, and APAC.
Learn and understand procedures supporting the assessment of risks to federal facilities.
Conduct in-depth reviews of FPS Facility Security Assessments (FSAs) for 4 FPS regions and provide written documentation on deficiencies.
Validate information contained in FPS building inventory and correct incongruent information with internal and external sources and partners.
Dynamis, Inc. provides analytical and advisory services. They focus on interpreting and applying policies and program requirements. I am unable to find information on employee size or culture for the company.
Maintain and improve information security policies, standards, and procedures.
Support SOC 2, ISO 27001, and HITRUST readiness, audit preparation, and evidence collection.
Support vendor security reviews, third-party risk assessments, and remediation tracking.
Benepass is making benefits easy through its customizable fintech platform. They enable People teams to implement, administer, and track benefits that meet employees where they are. The company has raised approximately $75 million in equity capital and is backed by leading investors.
Build the function by creating delivery operating model and reusable IP.
Deliver and scale service lines, including framework digitization and packaged services.
Own commercial outcomes by defining service packaging and pricing models.
Sprinto is an AI-native GRC platform that helps organizations manage risks, audits, vendor oversight, and continuous monitoring from a single connected platform. With a team of 350+ employees serving 3,000+ customers across 75+ countries, they combine scale with expertise to deliver trust and compliance.
Lead the development of security architecture guidance, standards, and reference diagrams for on-premise and cloud platforms.
Assess and evaluate security postures, review candidate architectures, and identify protection needs.
Support risk management and compliance, performing architecture reviews and maintaining documentation throughout the acquisition lifecycle.
Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. Named one of the Best Places to Work in the Washington DC area for 12 consecutive years, the company prides itself on an employee-centric culture and commitment to excellence.
Serve as the primary subject matter expert for IAM and ERP security across the CAPPS program, managing the full identity lifecycle and enforcing RBAC and least-privilege modeling.
Monitor authentication and authorization logs for anomalies, coordinate with the client's Information Security Office, and oversee secure integration of third-party applications via SAML, OAuth, OIDC, SCIM, and custom APIs.
Participate in annual IT control audits, review technical deliverables for CAPPS architecture and security system plans, and serve as a security advisor during procurement cycles.
RESPEC is a 100% employee-owned company that tackles complex challenges in energy transition, infrastructure resilience, digital transformation, and sustainability. Since 1969, they have built a culture of ownership where employees drive real solutions across global projects.
Translate group security frameworks into practical policies, controls, and procedures.
Build and strengthen a Security-by-Design culture across projects, platforms, and teams.
Support teams in identifying risks, defining actions, and tracking real progress.
Q8 is a well-respected, reliable, and trustworthy energy supplier that has been operating since 1983, with nearly 5,000 service stations in Europe. They are committed to developing a wide range of innovative and sustainable products and services. Their culture is focused on growing together in a digital and inspiring environment of trust, focused on continuous learning.