Job description

What you will do: - Assist in developing, maintaining, and updating security policies, standards, and procedures to align with ISO 27001 and NIST 800-171/CMMC 2.0. - Oversee and monitor the technical implementation of requirements derived from security policies, standards, procedures, and regulations to ensure and maintain compliance with frameworks like ISO 27001 and NIST 800-171/CMMC 2.0. - Contribute to the development and maintenance of documentation for IT security controls, ensuring documents are clear, up-to-date, and easily accessible to stakeholders and employees. - Oversee and participate in the coordination of regular IT security audits and assessments to ensure compliance with regulatory and industry standards. - Help conduct risk assessments and gap analyses to identify potential technical and non-technical risks to Parallel Wireless information systems and GRC initiatives. - Monitor the effectiveness of security controls and assist in the planning and implementation of improvements. - Support the incident response and reporting process to ensure efficient resolution of security incidents. - Contribute to the development and delivery of security training programs to enhance security awareness. - Collaborate with cross-functional IT teams to support a holistic approach to security and compliance. - Help optimize existing IT security tools and participate in planning for new or replacement tools. Technical skills you need to be successful: - Understanding of best practices to ensure network/networking concepts (routing, switching, VLANS etc.) are designed/implemented securely to ensure information system/data security. - Tools, technologies, techniques to: - Secure internal networks/assets from external networks/assets. - Keep assets (laptops, servers, etc.) secure. - Keep email secure and prevent email phishing (e.g., tools, technologies, techniques) - Ensure access & authorization security - Fundamental understanding of the following technologies: - AWS and other cloud service providers - Microsoft (Windows OS’s, Active Directory, O365, Azure - Firewalls (network & application) What you must have: - Bachelor’s degree in a relevant field (e.g., Computer Science, Information Security) or equivalent experience. - 3-5 years of experience in IT and information security, with a focus on security best practices, documentation, auditing, and compliance. - Familiarity and comfort with control-based frameworks. - Knowledge of data privacy and protection laws and regulations. - Strong communication and interpersonal skills. - Ability to multitask and work on various projects in a high-pace environment. - Must be a US citizen. Preferred Qualifications - Professional certifications such as Security+, Associate of CISSP, or similar. - Experience working with cross-functional IT teams. Work location - This is an onsite role with possibility of intermittent remote work.

Requirements