Talent.com
Cybersecurity Risk Assessment Consultant
Cybersecurity Risk Assessment ConsultantGDR Defense • Annapolis, Maryland, USA
Cybersecurity Risk Assessment Consultant

Cybersecurity Risk Assessment Consultant

GDR Defense • Annapolis, Maryland, USA
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Join GD Resources for dynamic opportunities in business management and IT where innovation meets excellence.

About the Company :

GD Resources is a Veteran Women-Owned Business Management and Information Technology company committed to excellence. GD Resources provides dynamic opportunities for veterans and professionals alike to contribute to innovative projects and drive success in a collaborative and supportive environment. Join us to make a difference advance your career and grow with a company that values integrity diversity and continuous improvement.

Job Title : Cybersecurity Risk Assessment Consultant

Location : Hybrid (onsite work possibly at various locations throughout Maryland)

Rate : Competitive DOE (W2 or 1099)

Position Overview

We are seeking a Cybersecurity GRC Data & Dashboard Consultant to support follow-on work from approximately 90 completed cybersecurity assessments for a client. The consultant will transform assessment results into structured data dashboards and reports that align with NIST CSF CMMI maturity scoring and the clients Governance Risk and Compliance (GRC) platform (e.g. ServiceNow GRC). This role is ideal for someone with strong cybersecurity domain knowledge GRC platform experience and hands-on skills in data analytics and dashboard development. The consultant will help build real-time interactive views of client-wide and agency-level cybersecurity maturity risks issues and remediation progress to support executive decision-making and continuous improvement.

Responsibilities

  • Convert all assessment results into a format compatible with the clients GRC platform import requirements.
  • Prepare and manage key data outputs including assessment scope maturity scores (CMMI 0 5 by NIST CSF function / category / control) findings risks issues and recommended remediation actions.
  • Provide data files and reports in Client-specified formats and offer reasonable technical assistance to support successful import into the Clients GRC platform.
  • Incorporate agency issue response status data from the Clients GRC platform into reporting and analysis as needed.
  • Design develop and maintain real-time reporting dashboards using cybersecurity assessment data at both client-wide (aggregated) and agency (disaggregated) levels.
  • Build dashboards that show :

Top control categories by maturity

  • Most common constraints
  • Top recommended areas of improvement
  • CMMI-based maturity levels (0 5) across Identify Protect Detect Respond and Recover
  • Top findings risks issues and issue response by agency
  • Ensure all dashboards are interactive allowing users to drill down into underlying assessment data behind summary metrics.
  • Implement robust filters in dashboards to support targeted analysis including filters for : Executive Branch designation enterprise agency agency size tier IT complexity tier and overall Maturity Group.
  • Build agency-level dashboards that :

    • Display average maturity scores by NIST CSF area compared against client-wide averages using side-by-side bar charts

  • Show maturity averages by CSF categories (e.g. Communications Maintenance Access Control) compared to client-wide averages
  • Highlight recommended areas of improvement top 10 findings and percent completion of identified issues
  • Create comparison dashboards that allow users to select one or more agencies and compare ratings and metrics across NIST CSF areas and categories.
  • Integrate historical NIST CSF assessment data from prior years into dashboards to show year-over-year trends at both agency and client-wide levels.
  • Ensure all required data entry is completed before final project close-out unless an exception is approved by the client.
  • Provide reasonable technical assistance to support ongoing imports and integration into the Clients GRC platform.
  • Participate in weekly status meetings with client stakeholders.
  • Prepare concise written status updates on a bi-weekly basis and join additional meetings / discussions as needed.
  • Maintain and follow quality procedures methodologies and standards relevant to this contract including those associated with Client platforms such as ServiceNow GRC.

    • Qualifications

  • Bachelors degree in Cybersecurity Information Technology Computer Science Data Analytics or related field (or equivalent experience).
  • 5 years of experience in cybersecurity GRC or risk management roles supporting government or large enterprise environments.
  • Hands-on experience working with NIST Cybersecurity Framework (NIST CSF) and familiarity with NIST 800-53 and / or NIST 800-171 controls.
  • Experience with CMMI-style maturity scoring (0 5) and translating assessment results into structured data and reports.
  • Practical experience with Governance Risk and Compliance (GRC) platforms preferably ServiceNow GRC or similar Client / enterprise platforms.
  • Strong skills in data analysis and dashboard / report development using tools such as Power BI Tableau or similar visualization platforms.
  • Proven ability to design interactive dashboards with drill-down and filter capabilities for different organizational tiers (e.g. client-wide vs. agency-level).
  • Experience integrating and analyzing historical assessment data to present trends and performance changes over time.
  • Strong attention to detail and ability to ensure data quality consistency and completeness prior to project close-out.
  • Excellent written and verbal communication skills including experience preparing status reports and presenting findings to technical and non-technical stakeholders.
  • Demonstrated commitment to ongoing training and staying current with cybersecurity standards tools and assessment methodologies.
  • Ability to participate in weekly calls and other meetings during standard business hours and collaborate effectively with a remote multi-organization team.

    • GDR is an Equal Opportunity Employer. We consider all qualified applicants without regard to race color religion sex gender identity national origin age disability veteran status or any other protected status under applicable law. We are committed to equal opportunity in all aspects of employment including hiring promotion compensation and benefits.

    Key Skills

    Access Control System,B2C,Business Analysis,Data Structures,Affiliate Marketing,Loans

    Employment Type : Full Time

    Experience : years

    Vacancy : 1

    [job_alerts.create_a_job]

    Cybersecurity Consultant • Annapolis, Maryland, USA

    [internal_linking.similar_jobs]
    Digital Network Exploitation Analyst / DNEA

    Digital Network Exploitation Analyst / DNEA

    Weeghman & Briggs LLC • Annapolis, MD, USA
    [job_card.full_time]
    [filters_job_card.quick_apply]
    Weeghman & Briggs was established in 2016 and is a company specializing in providing analytical services to Government Agencies and private companies to help them improve their processes.Weeghm...[show_more]
    [last_updated.last_updated_variable_days]
    Leasing Consultant

    Leasing Consultant

    OneWall Communities LLC • Middle River, MD, US
    [job_card.full_time]
    OneWall Communities® is a vertically integrated real estate company that focuses on transit and lifestyle-oriented workforce housing in the Northeast U. Our growing footprint in the region is a ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Target Digital Network Analyst Level 3

    Target Digital Network Analyst Level 3

    ELEVI Associates • Annapolis, MD, US
    [job_card.full_time]
    Because You Deserve More Than Just a Job.As a Target Digital Network Analyst (TDNA), you will : .Conduct advanced analysis of collection and open-source data to generate insights and leads.Ensure tar...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Escalation Specialist

    Escalation Specialist

    International Computer Sciences Inc • Annapolis, MD, US
    [job_card.full_time]
    ICSI is a leading Managed Service Provider (MSP) dedicated to delivering top-notch IT solutions to our clients.We pride ourselves on our commitment to excellence and our ability to solve complex IT...[show_more]
    [last_updated.last_updated_30] • [promoted]
    PayPal Risk Operations Associate

    PayPal Risk Operations Associate

    TradeJobsWorkforce • 21017 Riverside, MD, US
    [job_card.full_time]
    An exciting opportunity awaits for a PayPal Risk Operations Associate to perform daily responsibilities with dedication.Provide excellent interactions with customers and colleagues.Stay adaptable i...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Strategic Solutions Architect - Cyber & Cloud

    Strategic Solutions Architect - Cyber & Cloud

    EverWatch Corporation • Annapolis, MD, United States
    [job_card.full_time]
    A government solutions provider is seeking a Chief Solution Architect to lead the development of innovative technology solutions for critical missions. Candidates should have extensive software deve...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Malware Analyst II — Paid Training, Night Shift

    Malware Analyst II — Paid Training, Night Shift

    iNovex • Annapolis, MD, United States
    [job_card.full_time]
    A cybersecurity company in Annapolis, Maryland is seeking a Level 2 Malware Analyst to support mission-critical analytics and data science services. The ideal candidate has 5 years of cybersecurity ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    CISO : Strategic Information Security Leader

    CISO : Strategic Information Security Leader

    SHI • Annapolis, MD, United States
    [job_card.full_time]
    A global IT solutions provider is looking for a Chief Information Security Officer to develop and implement security strategies that protect information assets. This position involves leading incide...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Strategic Consultant Relations Lead (Remote)

    Strategic Consultant Relations Lead (Remote)

    UnitedHealth Group • Annapolis, Maryland, United States
    [filters.remote]
    [job_card.full_time]
    A leading healthcare organization is seeking a Consultant Relations Manager to build and maintain relationships with key consultants. The role involves promoting HBA strategies and driving growth th...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Director, Risk-Bearing Provider Sales - HCC & VBC

    Director, Risk-Bearing Provider Sales - HCC & VBC

    Datavant • Annapolis, MD, United States
    [job_card.full_time]
    A healthcare data solutions provider is seeking an experienced Director of Risk Bearing Provider Sales to lead sales efforts in chart retrieval and HCC coding solutions. This role involves driving r...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    F5 Security Engineer - Active TS / SCI with CI Poly

    F5 Security Engineer - Active TS / SCI with CI Poly

    ENS Solutions, LLC • Annapolis, MD, US
    [job_card.full_time]
    Participate in the development and support of customer technical requirements.Champion a collaborative, team-based environment, sharing standard methodologies and success and building positive rela...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Strategic Consultant Relations Lead (Remote)

    Strategic Consultant Relations Lead (Remote)

    Optum • Annapolis, MD, United States
    [filters.remote]
    [job_card.full_time]
    A leading healthcare organization based in Annapolis, MD is seeking a Consultant Relations Manager responsible for building and maintaining relationships with consultants.The role demands strategic...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security Lead

    Security Lead

    halcyondaysconsulting • Stevensville, MD, US
    [job_card.full_time]
    Clearance Required : Top Secret Clearance required w / SCI eligibility.Location : Stevensville, MD.Halcyon Days Consulting, LLC (HDC) is a veteran owned small business that specializes in the desi...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Remote Medical Director - Medicare & Compliance

    Remote Medical Director - Medicare & Compliance

    Humana Inc • Annapolis, MD, United States
    [filters.remote]
    [job_card.full_time]
    A leading healthcare organization seeks a motivated Medical Director to ensure adherence to national health guidelines.This role involves providing medical interpretation for home health services a...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Director

    Director

    HASI • Annapolis, MD, US
    [job_card.full_time]
    HASI is seeking an experienced portfolio management professional in the renewable energy sector to join our Portfolio Management team in Annapolis, MD. The Director of Portfolio Management (PM) will...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Security and Loss Prevention Expert, NA

    Security and Loss Prevention Expert, NA

    Maryland Staffing • Sparrows Point, MD, US
    [job_card.full_time]
    Security And Loss Prevention Expert.The Security and Loss Prevention Expert (SLP Expert) is a key leadership position within the Amazon Security and Loss Prevention (S&LP) team.This role leads the ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Target Digital Network Analyst / TDNA (Multiple Levels)

    Target Digital Network Analyst / TDNA (Multiple Levels)

    Weeghman & Briggs LLC • Annapolis, MD, USA
    [job_card.full_time]
    [filters_job_card.quick_apply]
    Weeghman & Briggs was established in 2016 and is a company specializing in providing analytical services to Government Agencies and private companies to help them improve their processes.Weeghm...[show_more]
    [last_updated.last_updated_variable_days]
    PayPal Fraud Analyst

    PayPal Fraud Analyst

    TradeJobsWorkforce • 21017 Riverside, MD, US
    [job_card.full_time]
    Be part of our success story as a PayPal Fraud Analyst to review transactions and identify suspicious activity.Work with your team to maintain efficiency and high standards.Stay adaptable to changi...[show_more]
    [last_updated.last_updated_30] • [promoted]