Security Consultant

Job Description

Readiness Delivered. At Kratos, we encourage an entrepreneurial spirit balanced with discipline. We work hard, and take care of our customers, employees, and families. Recognized as thought leaders in our industry, we are motivated by creating and delivering innovative solutions to our nation and global customers.

Do you want to be on the front lines of securing the nation's defense supply chain from cyber crime, theft, espionage and other threats? Helping small to large leading-edge organizations in the defense industrial base (DIB) secure their environments is at the core of what we do. As a Security Consultant for Kratos' Commerical Cybersecurity Services division, you will be supporting teams of professionals working to evaluate and secure a wide-range of environments within some of the most advanced, leading-edge organizations in the world. The ideal candidate will have a firm understanding of how to apply the principles of information security in a variety of circumstances and expertise translating security requirements into common technical implementations. Experience working across multiple compliance frameworks (CMMC, FedRAMP, DoD SRG, NIST, PCI, ISO, HIPAA, SOC, CJIS, etc.) is highly desirable.

Responsibilities:

General

• Expert-level knowledge of the CMMC framework, including practice requirements and the assessment methodology.
• Regularly obtains continuing education necessary to maintain certifications and/or meet qualifications requirements.
• Proactively maintains up-to-date knowledge of industry trends to enhance skills and abilities.
• Independently and proactively communicates progress on tasks and deliverables.
• Applies quality control practices to work product in advance of submission for quality assurance review.
• Takes ownership of opportunities to improve current service offerings.

Assessor

• Provide critical input into the development of assessment artifacts including the Assessment Plan, Daily Checkpoint Logs, Risk Traceability Matrix, and Security Assessment Report and briefing.
• Conduct client interviews and participate in working sessions to assess the technical and operational adequacy and sufficiency of security practice implementations.
• Collaborate effectively within dynamic teams and across multiple customer organizations with diverse personalities and expertise to drive agreement on complex issues.
• Effectively document successful and unsuccessful security practice implementations that appropriately reflect testing methodologies and evidence used to determine security practice implementation effectiveness.
• Effectively cross-walk multiple sources of evidence (artifacts, demonstrations, interviews, and tests) to assess the maturity of practice implementation throughout an organization.

Advisor Role

• Conduct diagnostic/discovery sessions to gain an understanding of security architecture and practice implementations.
• Leverage understanding of security architecture and practice implementations to identify gaps and develop supporting documentation.
• Work with multiple internal and external stakeholders to assess and identify security compliance gaps and propose technical and operational remediation solutions.
• Provide consultative reviews of security documentation with accompanying remediation or enhancement recommendations.
• Collabortive effectively within dynamic teams and across multiple customer organizations with diverse personalities and expertise to drive agreement on complex issues.

Experience and Skills

• CMMC Certified Assessor (CCA)
• Tier 3 suitability
• Ability and willingness to learn and support other security compliance frameworks.
• Ability to successfully pass security framework certification requirements.
• Broad based IT background with a technical understanding of networks, protocols, security configuration, cryptography and identity and access management.
• Excellent communication skills, both written and verbal, including an ability to translate technical concepts and issues into non-technical or layman's terms.
• Ability to successfully deliver on multiple, simultaneous tasks.

Preferred Skills and Experience

• ISC2 CGRC/CAP
• CompTIA CASP+
• CompTIA Cloud+
• CompTIA PenTest+
• CompTIA Security+
• GIAC GSEC

#LI-Remote

Competitive salary based on experience and education

Kratos is valued for our ability to design and deliver leading edge, resilient solutions for aerospace communication, control, awareness and mission success across a continuum of offerings-from commercial to tailored custom solutions and integrated programs. Customers trust us to stay relevant and know we are in it for the long-haul. We bring both the capability and confidence that our customers value and depend on. And we always deliver.

This posting will close within 90 days from the Posting Date.

Job Benefits

• Medical, Dental & Vision Insurance Coverage
• Life/ADD & Short/Long Term Disability Insurance
• 401(k) Savings Plan
• Employee Stock Purchase Plan (ESPP)
• Paid Time-Off (PTO)
• Holidays
• Education Reimbursement