Maddisoft has the following immediate opportunity, let us know if you or someone you know would be interested. Send in your resume ASAP. - U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. Send in resume along with LinkedIn profile without which applications will not be considered. Call us NOW! ***Visa sponsorship is available for this position.
Job Title: Network Security & Risk (GRC) Specialist
Location: Austin, TX (On-Site)
Interview Mode: Through Microsoft Teams
Position Overview
A Network Security Analyst ensures information systems and computer networks remain secure by protecting against hackers and cyber-attacks, monitoring network traffic and server logs for unusual activity, identifying vulnerabilities with recommendations to minimize them, investigating security breaches, developing strategies for security issues, and utilizing firewalls and antivirus software.
Key Responsibilities
System Security Planning (SSP)
- Develop, update, and maintain System Security Plans for CLIENT applications and systems.
- Work with program teams, Information Owners, and Custodians to gather control implementation evidence.
- Ensure System Security Plans align with NIST, CLIENT, and CLIENT CISO Office standards.
Security Assessments (SA)
- Plan and conduct Security Assessments to validate implementation and effectiveness of security controls.
- Review technical, administrative, and operational evidence.
- Document assessment results and track remediation activities.
Risk Assessments (RA)
- Facilitate Risk Assessment workshops with Information Owners and Custodians.
- Identify threats, vulnerabilities, likelihood, and impact.
- Document risks, mitigation plans, and Risk-Based Decisions in RSA Archer.
GRC & Compliance Operations
- Maintain security artifacts, risks, and remediation plans in RSA Archer GRC.
- Support system authorization (ATO) activities and continuous monitoring.
- Prepare audit and oversight evidence.
- Produce leadership reports and security posture metrics.
Stakeholder Engagement
- Serve as liaison between program areas, technical teams, and CISO Office leadership.
- Provide guidance and training on System Security Plans, Security Assessments, and Risk Assessment processes.
Key Deliverables
- Completed and updated System Security Plans (SSPs)
- Documented Security Assessment reports and findings
- Completed Risk Assessments and Risk-Based Decisions
- RSA Archer risk and compliance records
- Remediation tracking and status reports
- Audit-ready security documentation packages
Required Certifications (At Least One)
- CompTIA Security+
- GIAC GSEC
- CAP
- CISSP
Minimum Requirements (4+ Years Experience)
Candidates that do not meet or exceed the minimum stated requirements will be displayed to customers but may not be chosen for this opportunity.
- 4+ years of experience in cybersecurity GRC, system security planning, or information assurance.
- Hands-on experience developing System Security Plans (SSPs), conducting Security Assessments, and facilitating Risk Assessments.
- Knowledge of NIST SP 800-53 and NIST Risk Management Framework.
- Experience using GRC platforms (RSA Archer preferred).
- Experience working with Information Owners and Custodians.
- Strong technical writing and documentation skills.
- Ability to work independently on complex assignments.
Preferred Qualifications
- 3+ years familiarity with CLIENT Security Control Standards.
- 3+ years experience supporting ATO and continuous monitoring.
- 2+ years experience in state or federal government cybersecurity programs.
- CRISC or CISA certification.
Never miss an opportunity! Create an alert based on the job you applied for.
