SOFT's client is looking for a Security Risk Assessment - NIST / AWS for a long term contract assignment.Qualifications: - Experienced in conducting security risk assessment based on NIST 800-53 controls.
- Strong understanding of industry standard information security control frameworks. (e.g., NIST risk management framework SP 800-37, risk assessment SP 800-30, controls SP NIST 800-53, NIST CSF, FedRAMP, etc.).
- Demonstrate experience in the area of risk and controls across various IT platforms including web, Cloud, applications, database, operating systems, infrastructure, and network security.
- Ability to understand, and clearly articulate complex technology risks or control deficiencies to technical and non-technical business representatives, and translate into business risks. Be able to recommend security solutions and remediation.
- Strong knowledge of information security landscape, security solutions, and current and emerging security threats.
- Relevant industry accepted security certifications (AWS, CISSP, CISA, CRISC, SANS, etc.) a plus.
- US Citizen and the ability to obtain and maintain national security clearance
- Candidate must have a minimal 7 years of experience in an information security role.
- Relevant industry accepted security certifications (AWS, CISSP, CISA, CRISC, SANS, etc.)
- Ability to collaborate across different teams to achieve deliverables Proven working experience in project management Excellent client-facing and internal communication skills
- Excellent written and verbal communication skills Solid organizational skills including attention to detail and multitasking skills
|