Full Job Description
ECS is seeking a Senior Cybersecurity Compliance Specialist to work in our Fairfax, VA office.
The Senior Cybersecurity Compliance Specialist is an individual contributor role with responsibilities in supporting cybersecurity governance, compliance, and awareness efforts. This individual will be responsible for creating and maintaining enterprise-wide cybersecurity program documentation, including policies and standards. Additionally, this individual will be responsible for assisting in assuring compliance and reducing cyber risk across the enterprise by supporting the CIO organization and assisting ECS personnel in understanding their role in protecting assets of the company.
Work with team to conduct internal assessments to assure compliance with key frameworks and regulations (e.g. – CMMC, NIST 800-171, etc.)
Create and maintain enterprise-wide cybersecurity program documentation, including policy and standards and socialize with key stakeholders
Work with team to document compliance actions and track Plans of Action and Milestones (POA&M) to address non-compliance and track them to completion
Provide cybersecurity support to the business and CIO organization by tracking key cybersecurity records and artifacts associated with plans of actions
Work with the Cybersecurity Compliance team to plan and conduct key stakeholder meetings to support the socialization of cybersecurity obligations
Conduct analysis and research of security capabilities to improve compliance programing and cybersecurity messaging
Assist in managing the cybersecurity awareness working group
Populate key metrics and reporting slides for leadership
Support the Cybersecurity Compliance Department as needed
Bachelor’s Degree or equivalent experience
5 or more years’ experience in a Cybersecurity or Information Security role
Strong interpersonal skills to collaborate effectively with individuals across the business in various functions to communicate security related topics
Strong attention to detail
Bachelor’s degree, Security Certification (e.g. Relevant ISC2, GIAC or ISACA certification) or equivalent experience
Experience working with executives and senior stakeholders
Familiarity with SharePoint
Knowledge of Cybersecurity best practices and frameworks
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3000+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.