This job post is closed and the position is probably filled. Please do not apply. Work for Braintrust and want to re-open this job? Use the edit link in the email when you posted the job!
๐ค Closed by robot after apply link errored w/ code 403 10 months ago
\n\nABOUT US:\n\nBraintrust is a user-owned talent network that connects you with great jobs with no fees or membership costsโso you keep 100% of what you earn. \n\n \n\nABOUT THE HIRING PROCESS:\n\nWhen you join Braintrust, you will be invited to a screening process for Braintrust to learn more about your previous work experiences. Once completed, you will have access to the employer for this role and other top companies that seek high-quality talent. Apply to this job to kick off the process. \n\n\n* \nJOB TYPE: Freelance, Contract Position (no agencies/C2C - see notes below)\n\n* \nLOCATION: Remote - United States only (TimeZone: EST | Partial overlap)\n\n* \nHOURLY RANGE: Our client is looking to pay $115 โ $125/hr\n\n* \nESTIMATED DURATION: 40h/week - Long term\n\n\n\n\nTHE OPPORTUNITY\n\n\n\nStart date: ASAP\n\nThis is a 6 month contract opportunity with the possibility of converting into an FTE.\n\n \n\nA Security Consultant is a client-focused position that works with the company's clients to develop a comprehensive security program. Our client's GRC Security Consultantsโ responsibilities include planning, implementing, and monitoring various security control frameworks. The GRC Security Consultant will be part of a select group of industry-recognized experts and work on unique security solutions associated with next generation technologies and emerging security threats. Ongoing training and professional certifications are part of the job requirements. \n\n \n\nSkillsets \n\n\n* \n\nKnowledgeable of industry standards such as NIST 800-53, NIST CSF, NIST 1800-23, DFARS and CMMC, NYS DFS, NYS Shield Act, HIPAA, NYS DOH OHIP SSP, NERC CIP, GDPR, PCI-DSS, CIS CSC. \n\n\n* \n\nDemonstrated standards assessment experience\n\n\n* \n\nGeneral knowledge IT consulting, control implementation and optimizations, along with auditing security domains such as identity and access management, data encryption, application security, firewall auditing, vulnerability management and reporting, and asset management\n\n\n* \n\nFamiliarity with vulnerability management programs, security architecture reviews, technical and physical security assessments\n\n\n* \n\nExperience developing security analysis documentation and recommended remediation actions\n\n\n* \n\nGeneral knowledge of network topologies, security architectures, security solutions, tools, and IT Policies and standards\n\n\n* \n\nExperience with interfacing and presenting to C-level executives\n\n\n\n\n\n\n\n \n\nRequirements\n\n\n* \n\nProven collaborator\n\n\n* \n\nTakes ownership of the project, tasks, and client deliverable\n\n\n* \n\nAbility to prioritize effectively and handle shifting priorities professionally\n\n\n* \n\nExemplary written and verbal communication skills\n\n\n* \n\nProduce and review reports to support project deliverables\n\n\n* \n\nCreate clearly stated remediation recommendations based on industry best practice\n\n\n* \n\nSuccessfully interface with clients (internal and external)\n\n\n* \n\nDocument and explain technical details in a concise, clear manner\n\n\n* \n\nComfortable with public speaking in front of an audience\n\n\n* \n\nManage personal schedule, projects tasks, and team deliverables\n\n\n* \n\nParticipate in pre-sales calls and write consulting proposals and statements of work\n\n\n* \n\nAssist the Sales team in presenting proposals and closing sales opportunities\n\n\n* \n\nProvide weekly time accounting and monthly expense reports\n\n\n* \n\nOccasional travel as required by client engagement\n\n\n\n\n\nCertifications\n\n\n* \n\nCISSP, required \n\n\n* \n\nCISM and CISA, desired.\n\n\n\n\n\n \n\nResponsibilities\n\n\n* \n\nDevelop client GRC programs and System Security Plans\n\n\n* \n\nConduct compliance assessments of controls for in-scope systems, including remediation assessments and audit-readiness assessments\n\n\n* \n\nFacilitate security compliance gap analysis workshops\n\n\n* \n\nCoordinate organizational remediation efforts based on plan of action and milestones, which is derived from the gap analysis workshops\n\n\n* \n\nPartner with technical teams, advising both on applicable control requirements and potential solutions to address them\n\n\n* \n\nCollaborate with client security, IT, and business teams to streamline security process and procedure development\n\n\n* \n\nIdentify control deficiencies and maintain records of deficiency details including management response documentation and exposure check evidence\n\n\n* \n\nDrive remediation activities with stakeholders, including developing remediation plans, tracking, and reporting remediation progress\n\n\n* \n\nSupport evidence collection and documentation for internal and external audits\n\n\n* \n\nPerform continuous monitoring activities and track control health metrics\n\n\n* \n\nDevelop and manage internal GRC initiatives\n\n\n* \n\nStay up to date and proactively informed on developing regulatory concerns and evolving compliance control solutions\n\n\n* \n\nReport on security operations to client leadership teams in terms of risk and compliance\n\n\n* \n\nWork with our client's team to provide evidence at time of external client audits\n\n\n* \n\nParticipate in security and compliance testing of client infrastructure\n\n\n\n\n\n \nWhat youโll be working on\n\n\n\n \n\nOur client is an IT consulting and services organization that specializes in cybersecurity, compliance, cloud, data, and application development. They work with businesses all over the world to reach their goals. Basically, they use technology to help businesses grow. Cool, right?\n\nTheyโre a global company with offices in 3 countries and over 350 employees around the globe, they strive to stay true to their roots: trust, accountability, creativity, community, and collaboration.\n\nTheir culture underpins everything they do. In fact, theyโre a Certified Great Place to Work. Theyโre looking for people who share their values, have passion for technology, and will make an impact on their clientsโ lives and their communities.\n\nSo, hereโs a bit about what itโs like to work at the company:\n\n\n* \n\nFocus on learning. Their team has an exceptionally wide breadth of expertise across the IT spectrum. You will learn about other areas of the industry by being immersed with their technology experts. \n\n\n* \n\nThey embrace change. They believe that when creativity is fused with technology in just the right way, amazing things can happen. World-changing things. They foster a creative and collaborative environment for employees and their teams.\n\n\n\n\n\nIf you're excited by the thought of working for a company like that, they want to hear from you!\n\n\n\nApply Now!\n\nBraintrust Job ID: 6664\n\n \n\nC2C Candidates: This role is not available to C2C candidates working with an agency. If you are a professional contractor who has created an LLC/corp around their consulting practice, this is well aligned with Braintrust and weโd welcome your application.\n\nBraintrust values the multitude of talents and perspectives that a diverse workforce brings. All qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status.\n\n \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Testing and Sales jobs that are similar:\n\n
$50,000 — $105,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐
We hire old (and young)\n\n
\n\n#Location\nUnited States