Mid-Level Cybersecurity Professional

Title: Mid-Level Cybersecurity Professional

Location: Remote

About iWorks:

iWorks Corporation, founded in 2005, is a leading provider of information technology and professional services to the federal government. We are a recognized leader in personnel security and vetting solutions, Agile, DevOps, DevSecOps, data analytics, and cloud solutions. Our continuous process improvement approach, combined with our business and technology expertise, results in innovative solutions.

We offer exceptional comprehensive benefits (Medical, Dental, Vision, Life and Disability); 401(k); Profit Sharing; Health and Wellness Benefits; and Paid Sick Time, Vacation Time, and Holiday Time. You're eligible for bonuses throughout the year as part of our incentive program for innovation, and business development. All employees are also considered for an annual raise, commensurate with performance and company commitment.  

About this position:

We are seeking a skilled and experienced Mid-Level Cybersecurity Professional to join our team. The successful candidate will have a hands-on role in defining the architecture, configuration, and implementation of systems and processes that are compliant with NIST 800-171. This individual will also support the company's CMMC C3PAO certification efforts.

Salary Range: 80k-110k - commensurate with the candidate's skills, experience, location, and qualifications.

On a day-to-day basis you will:

1. Define and implement architecture and configuration of systems and processes compliant with CMMC Level 2.
2. Support the company's CMMC C3PAO certification.
3. Ensure compliance with NIST SP 800-171 and 800-171A.
4. Maintain ISO 27001/27002 compliance.
5. Write and review System Security Plans (SSP).
6. Develop and maintain cybersecurity documentation, including POA&Ms, SOPs, Incident Response Plans, and Risk Assessments.
7. Conduct security control assessments and ensure audit readiness.
8. Administer Linux and Windows environments.
9. Apply knowledge of STIGs and Microsoft cyber practices.
10. Understand and implement CMMC requirements.

Required Education/Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, or a related field.
• Minimum of 3-5 years of experience in cybersecurity.
• Demonstrated experience with NIST SP 800-171 and 800-171A.
• Knowledge of ISO 27001/27002 compliance.
• Experience in writing and reviewing System Security Plans (SSP).
• Proficiency in developing cybersecurity documentation, including POA&Ms, SOPs, Incident Response Plans, and Risk Assessments.
• Experience in security control assessments and audit readiness.
• Hands-on experience administering Linux and Windows environments.
• Knowledgeable with STIGs and Microsoft cyber practices.
• Understanding of CMMC requirements.

Relevant Certifications

MUST possess one or more of the following:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• CompTIA Security
• Certified Cloud Security Professional (CCSP)
• Certified Ethical Hacker (CEH)

FLSA & EMPLOYMENT STATUS: FLSA EXEMPT AND FULL-TIME POSITION

iWorks Corporation is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, Veteran status, sexual orientation, or other protected characteristic.

iWorks is committed to maintaining a safe and productive work environment for all employees and ensuring the security and well-being of our clients. As part of our standard hiring process, we may conduct background checks and drug screenings on potential candidates to assess their suitability for employment.