-Assists with difficult cybersecurity questions and requests from customers.
- Direct sponsor engagement as required to review current and planned requirements for secure infrastructures that require compliance.
- Guide requirements gathering and analysis.
- Leads validation of security control configuration on systems, ensure all systems are configured to necessary controls, such as NIST, DFARS 252.204-7012, CMMC, and other similar requirements.
- Articulates privacy requirements into product life-cycle including definition, requirements analysis, synthesis, cyber engineering analysis and implementation.
- Conducts privacy impact analyses and identify areas needing improvement and recommend necessary enhancements to achieve privacy goals.
- Reviews modifications to critical information systems and directs implementation of configuration changes.
- Mentors lower-level cybersecurity and IT professionals across the enterprise.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Required Skills & Experience
- Bachelors degree and 9 years of exp OR Masters and 7 years of exp
- Experience in cyber-Governance, Risk, and Compliance (GRC).
- Experience in a cyber assessment or inspection related role, ideally with experience in cybersecurity incident response.
- Solid technical understanding of cybersecurity concepts, standards, guidelines, and principles.
- Experience with industry-recognized security compliance frameworks (NIST, PCI-DSS, HIPAA, etc.).
- Experience with data aggregation/analytics and/or SIEM tool
- Experience with Endpoint Detection and Response (EDR) solutions.
- Experience with Vulnerability Management tools.
- Ability to handle time-sensitive situations with a calm and professional attitude while maintaining an appropriate sense of urgency.
- Ability to work at a technical level to assessments of IT environments, capable of identifying vectors of threats, vulnerabilities, and areas on non-compliance.
- Ability to communicate and present at various levels of technical detail depending on audience, ranging from cybersecurity deep dives to non-technical stakeholders.
- Effective project management and organizational skills, including managing multiple, concurrent tasks and meeting deadlines.
- Excellent interpersonal skills and ability to create collaborative relationships with colleagues across various groups and levels, and influence without authority.
- Demonstrates leadership skills with ability to communicate effectively and work independently, both as part of and leading a team.
- Ability to mentor team members at all levels, develop training plans, and foster personal and professional growth within the team.
- CompTIA Advanced Security Practitioner (CASP), Certification Authorization Professional (CAP), GIAC Security Leadership Certificate (GSLC), Health Care Information Security and Privacy Practitioner (HCISPP), or equivalent certification.

Nice to Have Skills & Experience
- Active Secret Clearance
- Master's degree in cybersecurity, information technology, engineering, or a related field
- Experience as an incident manager, commander, or leader.
- 10+ years of progressive work-related experience in information security, public accounting or internal audit, with a focus on IT controls audits and assessments and/or controls readiness assessments.
- Excellent knowledge of technology infrastructure environments including Windows, Mac, Linux, virtual, and cloud.
- Experience in an incident response-related role, or a participant in an incident response team
- Experience with the following cybersecurity tools: Splunk, CrowdStrike, Tenable.io, Axonious
- Detail oriented; Exceptional oral and written communication and presentation skills.
- Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent certification

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.