SonicJobs Logo
Left arrow iconBack to search
  1. Home
  2. 10008, New York, NY
  3. Cybersecurity Assessor

Cybersecurity Assessor

Clearwaters.IT
Posted 9 days ago, valid for 6 days
Location

New York, NY 10008, US

Salary

Competitive

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • This position is contingent upon award and requires a Bachelor’s degree or 5-7 years of relevant experience, along with 5+ years in GRC methodologies and security control auditing.
  • The role involves evaluating enterprise systems, networks, and applications for vulnerabilities, managing documentation, and conducting security assessments for internal systems and third-party vendors.
  • Candidates must possess at least one certification such as CISA, CRISC, or CISSP, and have technical skills in GRC platforms and risk tools.
  • The job is hybrid, requiring 3 days onsite in Brooklyn, NY, and 2 days remote, with applicants needing to be U.S. citizens and willing to undergo a background check.
  • Salary details are not specified, but the position includes benefits such as health care, retirement plans, life insurance, and paid time off.

***This position is contingent upon award ***

Responsibilities:

  • Evaluate enterprise systems, networks, and applications to identify vulnerabilities, assess risks, and ensure compliance
  • Interpret federal mandates (NIST SP 800-53/37), evaluate controls, and conduct Security Impact Analyses
  • Manage Plan of Action and Milestones (POA&M) documentation
  • Conduct security and compliance assessments for internal systems and third-party vendors
  • Analyze assessment results, document findings, and support remediation efforts
  • Use industry-standard GRC and risk tools for documentation and workflow
  • Maintain assessment documentation and contribute to security posture reporting
  • Perform daily RMF (Risk Management Framework) lifecycle control assessments

Location: Hybrid - 3 days onsite Brooklyn, NY, 2 days remote. Candidates must be able to reliably commute to the on-site location. Relocation assistance is not provided.

Applicant must be a U.S. citizen residing in the U.S.

This position requires obtaining a clearance through the Department of Education. Applicants must be willing to undergo a background check as part of the hiring process.

Education: Bachelor’s degree from an accredited university or 5-7 years of relevant experience.

Experience: 5+ years in GRC methodologies, security control auditing, third-party risk assessments

Certifications: (candidates MUST HAVE obtained at least one)

  • CISA (Certified Information Systems Auditor)
  • CRISC
  • CGEIT
  • CISSP
  • CompTIA Security+
  • CCSK (Certificate of Cloud Security Knowledge)
  • CAP/ISC2 CGRC

Technical Skills:

  • GRC platforms (Archer/ServiceNow)
  • Third-party risk tools (OneTrust/Prevalent)
  • MS Excel (Advanced)
  • MS Power BI
  • MS Visio
  • JIRA
  • Microsoft Office Suite
  • Health Care Plan (Medical, Dental & Vision)
  • Retirement Plan (401k, IRA)
  • Life Insurance (Basic, Voluntary & AD&D)
  • Paid Time Off (Vacation, Sick & Public Holidays)
  • Training & Development


Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

© 2017 - 2026 SonicJobs Inc. All rights reserved

Terms & Conditions | Privacy Policy | Browse Jobs