IT SECURITY CONSULTANTConcurrent Technologies CorporationJohnstown, PA (Hybrid)

　　Minimum Clearance Required: N/AClearance Level Must Be Able to Obtain: N/AEmployee Background Check Required

　　This is a hybrid position located in the Johnstown, PA area, with the flexibility to work from home while participating in some in-person client and team discussions and/or site visits.  Candidates must reside in western Pennsylvania, or within a reasonable commuting distance (100 miles from Johnstown, PA), to ensure availability for regular, on-site security assessments of small and medium sized businesses in western Pennsylvania.

　　Key Responsibilities:Work as a key  member of the cybersecurity assessment team providing consultative and  proactive risk & security related support to small and medium-sized  businesses in PennsylvaniaUnderstanding  and overseeing implementation of control standards (NIST 800-53, NIST  800-171, CMMC), and control testing strategiesApplying cyber  compliance / risk management knowledge, control principles and technical  knowledge across cyber risk and compliance engagementsLeading  cybersecurity assessments using the Cybersecurity Maturity Model  Certification (CMMC) modelLeading security  and controls work for cybersecurity and privacy regulationsDeveloping and  executing a detailed project plan and assessment approachWorking with  team members to advise on practical and cost-effective solutions to help  mitigate our clients' cybersecurity risks and challengesUnderstanding  relevant security regulatory compliance requirements and translating those  into business processes and security controls to enhance and support  client's compliance and audit capabilities.Articulating and  defending IT controls testing approach and performing test of design and  operating effectivenessEstablishing and  maintaining effective working relationships with colleagues, existing  clients, and prospective client organizationsWhile not a  business development role, a successful candidate will have experience  supporting customer acquisition activities, in addition to maintaining  customer relationships, and will be expected to collaboratively develop  strategies with the rest of the team to acquire customers for  cybersecurity assessments

　　Basic Qualifications:Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or other technical field and 4-6 years of experience or a Master of Science degree with at least 2-4 years of experience or a PhD with at least 0-2 years of experience.Three (3) years of experience testing IT security controls including experience managing and facilitating client control testing efforts.Two (2) years of experience leading external and internal auditorsTwo (2) years of experience creating technical documentation and compliance reports

　　Preferred Qualifications:Certified Information Systems Security Professional  (CISSP) or;Certified Information Systems Auditor (CISA) or;CMMC Certified Assessor (CCA) or Certified Professional  (CCP)

　　Why CTC?Our teams at CTC  are passionate and thrive on collaboration in a team environmentWhen we  encounter a difficult problem, we have a variety of talented and diverse  employees that work together to solve the toughest challengesCompetitive  salary and benefits packageAlthough our  work at CTC is extremely important, we also recognize the need for our  employees to maintain a proper mix of work and personal lifeVisit  to learn more

　　Join us!  CTC offers exceptional career growth, cutting edge technology, educational opportunities, and recognition for quality work.

　　Staffing Requisition: SR# 2023-0064

　　"We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability status, protected veteran status, or any other characteri tic protected by law."