Security Risk Management Specialist
Gdh Consulting, Inc.

A Security Risk Management Specialist is an experienced cybersecurity professional responsible for overseeing vulnerability assessments and security audits within a remote environment. This role involves engaging with asset owners and stakeholders to understand mission objectives, identify key assets, and evaluate security risks. The specialist plays a critical role in investigating risks, conducting on-site audits when necessary, and recommending remediation strategies to strengthen organizational security posture.

Responsibilities

• Lead vulnerability assessments and security audits to identify potential risks and exposures.
• Interview asset owners and stakeholders to gather information on mission, strategy, and critical assets.
• Investigate security risks and conduct on-site audits to assess controls and security measures.
• Evaluate the effectiveness of security controls based on established risk frameworks such as NIST, FedRAMP, or FISMA.
• Identify and analyze partner-related risks and exposures affecting organizational assets.
• Recommend and develop remediation strategies within the partner business environment.
• Harden systems to comply with security benchmarks such as CIS, and verify vulnerability resolutions.
• Utilize vulnerability scanners like Qualys to identify and manage system vulnerabilities.
• Automate security-related tasks using scripting and automation tools such as Python or Ansible.
• Stay updated on the latest security standards, frameworks, and cloud security solutions to enhance risk management strategies.

Qualifications

• Over 10 years of experience in cybersecurity, risk management, or a related field.
• Deep knowledge of security controls including FedRAMP, NIST, FISMA, or STIG.
• Proven experience with vulnerability management, resolution, and verification processes.
• Familiarity with system hardening practices to meet CIS benchmarks.
• Experience working with vulnerability scanning tools like Qualys.
• Ability to automate tasks and processes using scripting languages such as Python, Ansible, or similar tools.
• Hands-on experience with cloud security solutions and offerings.
• Strong investigative and auditing skills with the ability to assess complex security environments.
• Excellent communication skills to collaborate with stakeholders and asset owners.
• Availability to work remotely and adapt to flexible schedules as required.

Publishing Pay Range: $60.00 - $68.00 hourly

This is a fully remote role and can be performed from an approved location.

About GDH:
At GDH, we believe in the power of people and the importance of caring. Our culture statement, "We care about people," isn't just a tagline - it's the core of everything we do. GDH is a premier staffing and talent solutions company dedicated to helping businesses find the best talent and assisting job seekers in finding their dream jobs.

Who We Are:
GDH, founded in 2001, has grown into a leader in providing staffing solutions across various industries. We specialize in IT across several sectors, connecting top talent with leading enterprises. As a Best of Staffing firm recognized for excellence in client, employee, talent, and women's services, we pride ourselves on our commitment to quality and service.

GDH Benefits

GDH offers a range of employee benefits that are designed to promote well-being and help maintain a healthy work-life balance. These comprehensive benefits cover various aspects of an employee's life and aim to enhance their overall experience with the company. Our health benefits include three medical insurance options with access to KISx Card, Zero Card, and HealthJoy concierge services. Other plan offerings include dental, vision, life, disability, supplemental insurance, and pet insurance plans. Enjoy additional perks like holiday pay, 401(k) plan, direct deposit, an employee referral program, work-life balance benefits, a Wellbeats membership, a discounted gym membership program, and more! For more detailed information on benefits, please go to GDH's website under the tab for candidates.

GDH provides equal employment opportunities (EEO) to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, gender, sex (including pregnancy), sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, ancestry, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable federal, state, and local laws. Applicants with disabilities who require an accommodation or assistance in applying and/or for interviewing, please contact our HR Department.

Please visit our notice of collection for California applicants.

---