About Hunter Strategy
Hunter Strategy has a unique philosophy to technical project delivery. We treat all our customers like mission partners because they rely on our team to meet their objectives through complex software engineering, cloud operations, and cyber risk management solutions. Hunter Strategy was founded on the premise that IT is 21st century infrastructure - critically important but only instrumentally valuable. Accordingly, our teams look at problems with a single objective: the identification and enablement of the right capability to address the most vexing problems our Mission Partners face. We continue to support our partners' success by leveraging the right technology, with the right plan, and the right team to address tomorrow's challenges today.
Hunter Strategy's Governance, Risk, and Compliance (GRC) team has been selected to perform on NASA's first Enterprise Security and Privacy Services contract. This new multi-year contract in conjunction with our existing portfolio of Government Risk Compliance customers has led to the opening of 4 new positions for Security Control Assessors to join our team. As a Security Controls Assessor, you will develop trusted, strategic partnerships with key sponsors and stakeholders and by maintaining a deep understanding of current information security trends, as well as regulatory and compliance changes that affect the security landscape. All Hunter Strategy GRC Consultants are expected to have deep expertise in various GRC Frameworks (NIST, PCI-DSS, ISO, etc) as well as knowledge in GRC tools to include but not limited to XACTA, e-MASS, ServiceNow, and RSA Archer.
Responsibilities:
- Apply comprehensive knowledge of concepts, processes, practices, and procedures on technical assignments.
- Support enterprise Cybersecurity standards in coordination with Government develops and implements Cybersecurity standards and procedures.
- Coordinate development, and recommends security processes for an organization.
- Recommend Cybersecurity solutions to support customers’ requirements. Identifies and reports security violations.
- Recommend and satisfies Cybersecurity requirements based upon the analysis of CSPP, policy, regulatory, and resource demands.
- Support customers at the highest levels in the development and implementation of processes and policies.
- Apply know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures.
- Support analysis, design, and development of security features for system architectures.
- Analyze security requirements for computer systems which may include mainframes, workstations, and personal computers.
- Design, develop, engineer, and implement solutions that meet CSPP requirements.
- Provide integration and implementation of the computer system security solution.
- Analyze general Cybersecurity-related technical problems and provides basic engineering and technical support in solving these problems.
- Support vulnerability/risk analyses and makes recommendations on computer systems and applications during all phases of the system development life cycle.
- Perform all procedures necessary to ensure the safety of information systems data assets and to protect systems from intentional or inadvertent access or destruction.
- Ensure that all information systems are functional and secure.
Requirements:
- Bachelors degree in Information Technology or related field.
- One or more DoD 8570/01-M Cyber Certifications (such as CompTia Security+)
- 8+ years of experience in Information Technology with a focus on CyberSecurity
- 4+ years of experience performing as a Security Controls Assessor.
- Active DoD Secret Clearance and/or clearable for a Government Security Clearance.