Develops and refines performance methodologies that support the cybersecurity requirements.
Oversee independent assessments and review Security Impact Analyses (SIA).
Incorporate compliance data into the Governance, Risk, and Compliance Tool (GRCT).
SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider. It is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development.
Perform internal audits and vulnerability testing, ensuring security controls are monitored.
Lead security architecture governance for internal IT and projects, using Unified Architecture Framework.
Maintain compliance with security requirements and develop roadmaps to address evolving threats.
Jobgether is a platform connecting job seekers with companies. It uses AI-powered matching to ensure applications are reviewed quickly and fairly, identifying top candidates for employers.
Manage certification frameworks, including CMMC, NIST, and SOC 2.
Develop, track, and maintain security and compliance policy documents.
Analyze and review system configurations for security vulnerabilities.
Rubris Inc. provides transformational legal technology and solutions for complex business and legal processes in the mass tort industry. They streamline and automate processes to improve efficiency while delivering unprecedented insights and analytics.
Support and execute security incident response activities.
Operate and improve enterprise security controls and tooling.
Coordinate security investigations with DevOps, IT, and Engineering teams.
Keeper Security transforms cybersecurity for organizations around the world with next-generation privileged access management. Keeper’s zero-trust and zero-knowledge cybersecurity solutions are FedRAMP and GovRAMP Authorized, FIPS 140-2 validated, as well as SOC 2 and ISO 27001 certified.
Serves as a cybersecurity Subject Matter Expert (SME) regarding OT Authorization of information systems and all associated cybersecurity policies and procedures.
Performs a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control), and determines the possible ramifications on the system’s current or future authorization.
Amyx is an equal-opportunity employer and a VEVRAA federal contractor. They are committed to considering all qualified candidates regardless of race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law.
Lead the end-to-end Certification & Authorization (C&A) process for information systems.
Maintain and update System Security Plans (SSPs), POA&Ms, and other FedRAMP/GovRAMP/NIST documentation artifacts.
Oversee control gap analysis and drive remediation efforts across technical and administrative domains.
EBSCO Information Services (EBSCO) delivers a fully optimized research experience, seamlessly integrated with a powerful discovery platform to support the information needs of our end-users. Headquartered in Ipswich, MA, EBSCO employs more than 2,700 people worldwide, with most embracing hybrid or remote work models.
Perform reviews and approvals for security-related tasks.
Attend Architecture Committee and AI Committee meetings.
Maintain and update existing security reference architectures.
Veeam is the #1 global market leader in data resilience, believing businesses should control all their data whenever and wherever they need it. Based in Seattle, Veeam protects over 550,000 customers worldwide who trust Veeam to keep their businesses running.
Deliver exceptional support experiences through security expertise and empathetic communication.
Provide expert-level advisory services on complex security questions and product issues.
Drive Security Operations team efficiency through process creation, optimization, and innovative feature ideas.
Blumira is a security operations platform built for growing teams and partners supporting them. They integrate comprehensive visibility, tools, and expert guidance to give IT and security teams peace of mind. The team is passionate about putting resilience in reach for every organization and helping teams build their own expertise.
Perform physical pentests and social engineering analysis
Evaluate the impact of new development on the operational security posture of IT systems
Propose, assess, coordinate, implement, and enforce information systems security policies, standards, and methodologies
Eurofins Scientific provides analytical testing services to clients across multiple industries, ensuring safety and sustainability. With 55,000 staff across 900 laboratories in over 50 countries, it is a global leader in food, environment, pharmaceutical, and cosmetic product testing.
Serve as our Clients’ primary technical point of contact throughout the sales cycle
Experience designing, implementing, and operationalizing security controls across a wide range of IT and enterprise business systems
Understand and articulate complex technical information to both technical and non-technical audiences
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1000 employees and have established strategic partnerships with leading security vendors, serving as a trusted advisor to more than 4,200 customers.
Own and lead enterprise-level compliance programs.
Define and mature ISO 27001 and ISO 42001 control environments and SOX 404 ITGCs.
Act as a subject matter expert and internal consultant for various teams.
Spring Health aims to eliminate mental health barriers with its clinically validated technology, Precision Mental Healthcare. They partner with over 450 companies, providing care for 10 million people and are valued at $3.3 billion.
Partner with key customers to understand and help achieve their business, objectives, cybersecurity initiatives, and desired outcomes
Establish strategies and roadmaps to drive cyber workforce resilience through a programmatic approach
Engage C-level executives, technical cyber security professionals, and major lines of business through delivering routine Executive Business Reviews
Immersive One is the leading cyber resilience solution across the globe. They help prove and improve your cyber resilience, by simulating real-world threats, testing your skills, and measuring performance. Founded in 2017, they have grown to over 300 employees globally and have been voted a Best place to work on multiple occasions.
Manage identity & access security, administer and secure Windows Active Directory, Azure Entra ID and SSO configurations.
Secure cloud infrastructure by protecting and monitoring infrastructure hosted in AWS and GCP.
Lead endpoint protection & threat detection; manage Microsoft Defender XDR for endpoint security; monitor alerts, investigate incidents, and lead incident response efforts.
Backcountry's mission is to connect people to their passions through their online stores. They aim to supply customers with premium outdoor products, shopping experience, personalized Gearhead expertise and inspirational content.
Serve as the primary cybersecurity point of contact for assigned DoD Information Systems.
Collaborate with stakeholders to ensure system compliance and readiness.
Develop, maintain, and update all RMF authorization and GRC documentation.
LMI is a digital solutions provider dedicated to accelerating government impact with innovation. Investing in technology and prototypes ahead of need, it brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed, employing agile methodology and collaboration.
Own and drive remediation of security vulnerability tickets across environments
Analyze vulnerability trends to identify process gaps and recommend improvements
Track remediation progress and provide weekly status updates to management
ItD is a consulting and software development company blending diversity, innovation, and integrity with real business results. They are a woman- and minority-led firm that rejects strong hierarchies, empowering them to deliver great results with Fortune 500 companies and high-performance teams.
Ensure technology solutions are scalable, resilient, and secure by design.
Embed security best practices directly into our IT operations.
Create defenses for our workstations and identities.
Huntress is a fully remote, global team of experts dedicated to breaking down barriers to cybersecurity. Founded in 2015 by former NSA cyber operators, they protect all businesses with enterprise-grade, fully owned, and managed cybersecurity products.
Lead and mature Material Bank’s enterprise information security program.
Own the security risk management framework, including risk identification, scoring, tracking, and executive reporting.
Own detection, incident response, and resilience strategy.
Material Bank operates the world’s largest material marketplace for the architecture and design industry, connecting designers with materials from leading brands. They operate in 37 countries and their platform is the standard for design professionals around the globe.
Lead execution of the enterprise information security program.
Oversee threat detection/response, vulnerability management, and incident response processes.
Partner with Engineering and Infrastructure teams to secure cloud environments and CI/CD pipelines.
bswift transforms benefits administration, making it simpler and smarter. They serve thousands of companies and millions of people nationwide, reducing administrative burdens and freeing HR teams to focus on creating thriving, people-first workplaces.
Monitor SIEM dashboard and security tools to detect security incidents.
Analyze alerts to determine relevance and prioritize response efforts.
Conduct investigations by gathering context and relevant logs.
Sentinel Blue is a young company focused on bringing enterprise-class cybersecurity to small and medium-sized businesses. They are pushing the envelope of how things are done and constantly seeking innovative ways to meet that mission in a fast-paced, dynamic environment that values learning and challenges.