Description:
Support the Senior Cybersecurity and Compliance Assessor in conducting assessments, reviews, and validations of security and compliance controls.
Assist in identifying security and compliance gaps, providing recommendations, and ensuring clients meet requirements.
Review documentation, validate evidence, and identify security and compliance gaps.
Participate in client meetings, take notes, and ask relevant questions.
Support the development of assessment reports, including findings, recommendations, and action plans.
Work closely with clients to address security and compliance concerns.
Collaborate with internal teams to improve methodologies, tools, and processes.
Maintain up-to-date knowledge of regulatory changes, emerging threats, and industry trends.
Requirements:
Bachelor’s degree in Computer Science, Information Systems, cybersecurity, or a related field.
At least 2 years of experience in cyber security, compliance, or related fields.
Experience with conducting security and compliance assessments, preferably in industries such as healthcare, finance, or retail.
Familiarity with regulatory frameworks such as HIPAA, PCI DSS, NIST, CMMC, and CIS.
Proficiency in using Google Suite (Google Docs, Sheets, Slides) and Microsoft Office Suite (Word, Excel, PowerPoint, Outlook).
Familiarity with compliance management tools, vulnerability scanners, and documentation platforms.
Required certifications include Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or equivalent.
Additional certifications such as QSA, AQSA, PCIP, or relevant industry certifications are highly desirable.
Strong understanding of cyber security principles, best practices, and industry standards.
Proficiency in conducting risk assessments, gap analysis, and compliance reviews.
Excellent written and verbal communication skills.
Ability to effectively communicate technical concepts to non-technical stakeholders.
Strong analytical and problem-solving skills.
Attention to detail and ability to validate evidence against regulatory requirements.
Project management skills to ensure engagements are on track, within budget, and meeting client expectations.
Ability to work collaboratively in a team environment and independently when necessary.
Familiarity with tools such as vulnerability scanners, compliance management software, and documentation platforms.
Benefits: