Control Implementation Specialist/Technical Writer
- Full-time
Company Description
We are a young and vibrant organization with a strong foundation and looking for the next set of leaders to grow the business.
Fully company-paid healthcare for you and your family
Monthly expense of $100 paid towards health and wellness expenses of your choice – gym memberships, yoga classes, massages, etc.
Monthly reimbursement for phone bill up to $100
Unlimited paid annual leave
Work from anywhere as long as quality work is getting done
Flexible hours – take breaks, cater to your personal and family appointments during the day as needed, core hours 9-4
We want our employees to be eternal learners – we will pay for reasonable and relevant trainings and certifications
We want you to participate in the company’s growth – healthy bonus and performance-based commissions to be discussed during the hiring process depending on the applicability to the role
Job Description
Responsibilities (The work at hand)
Creates, edits, and maintains cybersecurity compliance and implementation documentation for current and future applications
Support internal peer review and quality assurance efforts, assemble documentation for audits and ensure that documentation is compliant with governance policies.
Research and evaluate new documentation needed.
Develop documentation plans and timelines with level of effort required
Collaborate with platform analysts, project managers and subject matter experts to collect and interpret their input
Perform interviews and review sessions with security professionals (including CISO level) to understand the details of control implementation or remediation needed
Qualifications
(Certifications are important, but we care more about your practical experience)
Must Haves – Required Skills:
3-5 years’ experience – preferably in a cybersecurity role.
Professional writing experience either Tech writing or reports
Technology/Audit/GRC background
Customer facing experience
Nice to Haves – Desired Skills:
C&A or RMF experience
NIST 800-53 experience
Additional Information
Talent & Cultural fit Requirements (The environment we are creating)
Below are general qualities we look for in our team:
Content/Domain – Consultative Cybersecurity Delivery/implementation experience. Prior experience with implementing Risk Management Frameworks, specifically, NIST 800-53. Ideally, built, set up and run RMFs in enterprise organizations with the goal of meeting Federal and State compliance requirements.
Solid communicators – people who believe not just in doing the work but being able to effectively communicate the value of the work they perform
Highly collaborative team mentality – the project we are recruiting for is fast-paced, multi-faceted, with team members from various organizations working on a collaborative initiative. We need talent who recognize and appreciate the work of their team members, and understand their contributions are part of a larger vision / purpose
Mindset of simplification and getting the job done – the project we are recruiting for is extremely complex. We are looking for people who have a problem-solving mentality and ability to simplify complex situations
Start with Why? – we are looking for people who think about the mission and purpose of the work they are doing
Empathetic with high EQ – of course we want technically-sound people, but we like them a lot more when they have good attitudes. Bring positive energy and bring the team with you.