ISO Subject Matter Expert

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2

Skills

ISO SME
Subject Matter Expert
information security management

Job Details

ISO SME (3 positions) Subject Matter Expert

The primary duties involve overseeing the daily operations of ISO-related projects and processes, planning and scheduling service delivery and adoption, identifying opportunities for the development of new services within their assigned organizations. Detailed responsibilities include, but are not limited to:

Duties/Responsibilities:

  • Develop and maintain metrics to track adoption rates and regularly assess and enhance security controls, conducting assessments and evaluations to ensure effectiveness and compliance with established
  • Review and implement security policies to ensure compliance with regulatory requirements and organizational standards.
  • Conduct thorough reviews of vulnerability data, coordinating with stakeholders to prioritize and address identified vulnerabilities effectively.
  • Actively participate in Authorization to Operate (ATO) assessments, contributing expertise to ensure systems meet security requirements for operation.
  • Collaborate with cross-functional teams to develop and enhance security protocols and procedures for seamless integration and utilization.
  • Regularly report on adoption rates and identify areas for
  • Monitor security systems to detect and respond to potential
  • Act as the primary point of contact for ISO agency-related inquiries and
  • Monitor progress against established plans and adjust as
  • Develop strategic plans and roadmaps for service

Education:

Bachelor's degree in computer science, information technology, cybersecurity,

or a related field. Advanced degrees or certifications such as CISSP, CISM, or CISA are preferred.

General Experience:

  • Minimum of 5 years experience in information security
  • Analytical and problem-solving skills, with the ability to analyze complex security issues and develop effective solutions.

Specialized Experience:

  • Specific experience in implementing ISO plans, procedures, and cyber defense
  • Experience tracking adoption rates and implementing centrally managed cyber
  • Experience in developing strategic plans, roadmaps, and business cases for new cybersecurity initiatives

Preferred Qualifications:

  • Graduate degree or certifications such as CISSP, CISM, or CISA
  • Strong knowledge of industry standards, regulations, and best practices related to information security, including ISO 27001, NIST Cybersecurity Framework, and General Data Protection Regulation (GDPR).
  • Excellent communication and collaboration skills, with the ability to effectively communicate technical
  • Project management skills, with experience in planning, scheduling, and monitoring the delivery of cybersecurity services.