Serve as the lead Information Assurance authority for the program.
Manage and oversee RMF lifecycle activities, including ATO maintenance.
Develop, maintain, and govern cybersecurity and information assurance policies.
Jobgether is a company that uses AI to ensure applications are reviewed quickly, objectively, and fairly. They identify the top-fitting candidates and share this shortlist with the hiring company; the final decision is managed by the internal team.
Monitor and enforce security policies for data storage and access.
Support the Authority to Operate (ATO) process and security assessments.
Coordinate with cybersecurity teams to track security incidents.
NV5 Geospatial is a global technology solutions and consulting services company. They employ over 4,500 professionals in more than 100 offices worldwide and value diversity and collaboration.
Manage information security incidents and security risks across the organisation
Own and maintain the Information Security Management System (ISMS), including creating and updating policies, procedures, and guidance
Ensure adherence to information security policies and standards
TwinStream was formed in 2019 by engineers solving complex cross-domain problems within government organisations. They provide technical excellence and exceptional service to their clients with teams working both on-site and remotely.
Own vulnerability management, SIEM tuning and monitoring, incident response, and threat investigation.
Maintain secure baseline configurations based on industry standards.
Oversee AWS security controls and enforce cloud security guardrails.
Jobgether posts this position on behalf of a partner company. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Serve as the system Security Manager / ISSO for My HealtheVet and act as the primary security point of contact for internal leadership and VA stakeholders.
Drive a risk-based security approach appropriate for a FISMA High / HVA system.
Coordinate incident response activities, including investigation support, escalation, documentation, and communication with VA security operations and CISO teams.
Oddball believes that the best products are built when companies understand and value the things they are working on. They value learning and growth and the ability to make a big impact at a small company.
Lead security compliance aligned with federal standards.
Manage system security documentation and risk assessments.
Oversee continuous monitoring and vulnerability remediation.
Jobgether is an AI-powered matching service that connects job seekers with employers. The company ensures applications are reviewed quickly, objectively, and fairly against the role's core requirements.
Performs analysis of Alliance information security practices.
Identifies, investigates, and resolves security breaches.
Leads and performs staff training on information security.
Central California Alliance for Health (the Alliance) is an award-winning regional Medi-Cal managed care plan that provides health insurance for children, adults, seniors and people with disabilities. They currently serve more than 418,000 members with over 500 employees.
Advise tuning of SIEM correlation rules and use cases to identify security incidents and anomalies.
Monitor SIEM alerts, triage, and respond to security incidents in a timely manner, escalating as necessary to the appropriate team(s) for further investigation and remediation.
Perform Third Party/Supply Chain Risk Management reviews, to include security research and audit report analysis.
Defense Unicorns delivers mission value by streamlining software delivery so our customers can focus on the most important challenges. Our team is composed of innovators, software engineers, and veterans with decades of experience delivering technology programs across the federal market.
Use security and compliance tools (GRC tools) to help the company stay audit-ready
Manage IT assets and access permissions for team members and internal systems
Support daily security operations related to ISO 27001 / SOC 2
Hopae is building the world’s most trusted digital identity platform — private, secure, and built for real life. Backed by top global investors, Hopae operates across Seoul, Paris, and San Francisco, bringing together exceptional talent from over 10 nationalities.
Coordinate compliance with standards (PCI, HIPAA, ISO 27002, SOC 1/2/3, FISMA/FedRAMP, etc.) under guidance.
Maintain evidence repositories and partner with SMEs to refresh artifacts.
Coordinate audits and certification efforts, partnering with support teams on timelines and resourcing.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries.
Oversee security, compliance, and risk management of network infrastructure, ensuring the protection of critical assets and alignment with DoD standards.
Design and implement security measures that safeguard the network from unauthorized access, vulnerabilities, and advanced threats.
Manage the Risk Management Framework (RMF) process, ensuring systems remain secure and compliant with DoD requirements throughout their lifecycle.
TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well-planned information management environment. They focus on nimbly utilizing the best that information technology offers to meet the business needs of Federal Government customers.
Own our information security strategy and build our security roadmap.
Maintain our ISO 27001 certification, preparing for SOC 2 readiness.
Operate strategically and tactically, developing policy and reviewing cloud configurations.
ApprovalMax is redefining how finance teams manage the Money Out cycle — from purchase orders and supplier bills to employee expense management and payroll. Trusted by 18,000+ businesses worldwide, our platform empowers companies to automate financial controls, ensure compliance, and scale efficiently.
Collaborate with cross-functional teams to maintain and improve the company's comprehensive compliance program.
Manage the end-to-end audit process for SOC 2 compliance, ensuring timely and accurate completion.
Oversee the Information Security Risk Management Program, documenting identified risks, coordinating mitigation efforts.
airSlate is a global SaaS technology company that develops no-code workflow automation, electronic signature, and document management solutions. They have teammates in more than 20 countries across three continents and main hubs in the United States, Poland, Romania, Ukraine and Philippines.
Design, review and develop security architectures for systems and networks.
Conduct security assessments and communicate identified risks from vulnerability scans.
Collaborate with Product & Engineering teams ensuring security integration in projects.
Jobgether is a platform leveraging AI to match candidates with suitable job opportunities. They focus on ensuring a fair and objective candidate review process, and operate with AI powered matching and partner companies.
Oversee Endpoint Detection and Response (EDR) by guiding mid-level engineers in deploying and fine-tuning EDR solutions.
Lead Next-Generation Antivirus (NGAV) implementation by supervising the setup and configuration of behavioral-based protection.
Direct Threat & Vulnerability Management by overseeing continuous vulnerability assessments and providing remediation recommendations.
EXPANSIA is a service-disabled veteran-owned company that empowers organizations to be mission ready now with data, people, and ecosystems. As experts in continuous-delivery methods that drive digital adoption, they are dedicated to innovation, efficiency, and technology that benefit the warfighter.
Monitor SIEM alerts, triage incidents, and escalate as needed to ensure timely resolution
Conduct third-party and supply chain risk management reviews, including audit report analysis
Collaborate with engineering, IT, and operations teams to integrate and maintain security controls
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. It identifies top-fitting candidates and shares this shortlist with the hiring company.
Play a critical role in the technical development, implementation, and maintenance of the GRC platform.
Drive integration strategies between GRC platforms and enterprise systems for automated data sharing and reporting.
Provide expert guidance and leadership on GRC technical matters to senior leadership and business stakeholders.
Jobgether is a platform helping candidates find jobs. They use AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Deliver world-class cyber security assessment and advisory services across multiple Compliance offerings.
Work effectively as a team member on large engagements and remain current on technical knowledge.
Demonstrate GuidePoint’s Core Values at all times and achieve and maintain relevant cyber security and audit certifications.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. Since its inception in 2011, GuidePoint has grown to over 1000 employees and firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere.