Work Location: ONSITE - Dallas, TX
Engineer, GRC & Assessments (ANSP Program)
FOCUS
Ensure secure aircraft, ground, and communications systems relied upon for our ANSP Program, with concentrated attention towards risk, governance, vulnerability management, policies, and standards.
RESPONSIBILITIES
Develop and implement security policies and standards, ensuring compliance with industry regulations and best practices.
Conduct risk assessments and vulnerability assessments to identify1 and mitigate security risks.
Manage the vulnerability management program, including vulnerability scanning, penetration testing, and remediation.
Develop and deliver security awareness training programs.
Collaborate with stakeholders to integrate security considerations into the design and development of new aviation systems.
Stay informed about emerging threats and vulnerabilities in the aviation industry.
TOP SKILLS:
Minimum 3 years hands-on experience on below stack:
1. Risk Management Frameworks: (e.g., NIST RMF, NIST CSF, ISO 27005)
2. Risk Assessment Methodologies: (e.g., NIST 800-30, Threat Modeling)
3. GRC Platforms: (e.g., ServiceNow GRC, RSA Archer)
4. Vulnerability Management Tools: (e.g., Tenable Nessus, Tanium)
SKILLS:
Cybersecurity Risk & Governance Expertise: Requires 3-5 years of progressive cybersecurity engineering experience with a deep understanding of risk management frameworks (NIST SP 800-37, ISO 27005), governance principles, vulnerability management, and security policy development.
Risk Assessment & Mitigation: Proven experience conducting risk assessments (NIST 800-30, NIST CSF), identifying vulnerabilities, analyzing threats, and developing effective mitigation strategies.
Vulnerability Management Program Expertise: Expertise in vulnerability management tools and processes, including vulnerability scanning, penetration testing coordination, vulnerability prioritization, and remediation tracking.
Policy & Standard Development & Implementation: Strong ability to develop, document, and implement security policies, standards, and procedures that align with industry best practices, regulatory requirements, and risk tolerance
Communication & Stakeholder Collaboration: Excellent communication (written and verbal) and interpersonal skills to effectively communicate security risks, governance strategies, and policy recommendations to diverse stakeholders, including technical teams, management, and external partners.
PREFERRED CERTIFICATIONS:
CISSP (Certified Information Systems Security Professional)
CISM (Certified Information Security Manager)
CISA (Certified Information Systems Auditor)
CRISC (Certified in Risk and Information Systems Control)
CompTIA Security+
TOOLS AND TECHNOLOGIES:
Risk Management Frameworks: (e.g., NIST RMF, NIST CSF, ISO 27005)
Risk Assessment Methodologies: (e.g., NIST 800-30, Threat Modeling)
GRC Platforms: (e.g., ServiceNow GRC, RSA Archer)
Vulnerability Management Tools: (e.g., Tenable Nessus, Tanium)
Penetration Testing Understanding: (Familiarity with tools & methodologies for report interpretation)
Policy & Collaboration Tools: (e.g., SharePoint, Microsoft Teams, Policy Management Platforms)
Required Skills : Network Security
Basic Qualification :
Additional Skills :
Background Check : No
Drug Screen : No
...hr **salary will be commensurate with experience Job Description: Responsible for the efficient and effective delivery of Global Mobility services to employees and managers by providing timely, efficient, high quality customer care and an excellent employee and...
...You will float between clinics in Dunwoody, Decatur, ATL and one other location TBD. This position requires knee|joint injections Outpatient only Physical medicine and rehab clinics. Eager to chat with you and assist in making your move a FAB one! Skills 2 - 3...
We are seeing what talent is out there to add to our Leadership Team. Please read the entire ad. If you are qualified, we look forward to hearing from you. Here's what we're looking for...We are seeking an accomplished Director with experience in overseeing the operational...
...your local bank. Loop Internet is building a state of the art fiber optic network that will connect hundreds of thousands of homes and businesses... ...tree branches near fiber lines Work on aerial bucket and cable placer trucks Complete all projects with safety as the #1...
...specialize in auto repair and maintenance, but we also offer a variety of tires for every price point, customization capabilities, audio work, stereos, window tinting, and much more. And weve also become the go-to in the Chicago area for aftermarket parts. We are so happy...