Cybersecurity Assurance Consultant

Overview

Remote
On Site
Hybrid
BASED ON EXPERIENCE
Contract - Independent
Contract - W2
Contract - 12+ mo(s)

Skills

CYBERSECURITY
NIST
ISO
HITRUST
REPORT
RISK
CONTROL
AUTHENTICATION
IDENTITY
ENCRYPTION
IAM
ASSESSMENT
REVIEW

Job Details

Client: Health insurance company

Job: Cybersecurity Assurance Consultant

Location: 100% remote from the US

Duration: 12-month contract, open to extensions

Role Description:

We are looking for a contractor to supplement Information Security's Cybersecurity Assurance (CAD) process. Our client utilizes contractors in this role to evaluate key cybersecurity requirements and issue a report on their compliance to technical standards / requirements.

Our contractors focus on an incoming pipeline of project engagements to perform review, are assigned to multiple projects at a time, and are expected to issue a standardized set of deliverables for each project engagement. On-the-job training with existing full-time staff is anticipated and built into our ramp-up time for the contractor. This contract is intended to be longer-term in nature and could support a contract-to-hire path provided there is a good fit.

This position is known as a Cybersecurity Assurance Consultant, and is primarily responsible for:

  • Reviewing the security engineering of various technology components
  • Coordinating the integration with cybersecurity capabilities, such as authentication and encryption, and managing all relevant security changes during their lifecycle;
  • Providing direct support to the business and it technology owners on systems security,
  • Capturing relevant security data into a centralized risk register, and
  • Participating in the evaluation and development of processes and procedures to enhance customer service productivity and effectiveness.

We typically hire experienced candidates into this role that are familiar with architecture, design, and compliance practices. Key skills include:
  • Analytical skills to understand project and product documentation
  • Knowledge of key cybersecurity frameworks (NIST, HITRUST, ISO, etc.) and identification of their key requirements
  • Ability to interpret solution architectures and design documentation
  • Ability to apply key control, policy, design, and/or pattern requirements to determine if a solution is meeting those requirements
  • Report-writing (technical in nature, whether a product/application "passes assessment)
  • Interpersonal skills and comfort interviewing architects, product leads, IT engineers, developers and analysts
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.