Senior Analyst
Current~ Assess clients’ ecosystem for CMMC readiness and alignment with CMMC controls (DFARS, NIST)~ Assist clients in preparation for the CMMC certification process by reviewing documentation and evidence~ Conduct information security risk assessments and audits based on industry standards (HIPAA/HITECH, NERC, PCI-DSS, GLBA, FFIEC, SOC1, SOC2, NIST, ISO 27001)~ Provide information security management and strategic guidance to assist clients with the development of information security governance policies including incident response, asset management, cloud services, disaster recovery, etc. ~ Write and deliver client reports detailing findings and associated recommendations for information security program development to help the client meet security and compliance standards~ Coordinate and execute consultations with various departments and teams within the client’s organization to gather evidence, conduct penetration testing, and validate the client’s security controls~ Respond to advisory service requests to address and answer client questions and/or needs