Cyber Security Subject Matter Expert at CACI supporting a new DoD contract. Working on cloud security with an emphasis on system security engineering and risk management.
About the role
- CIS Security Manager responsible for EID’s information security strategy and compliance. Ensuring protection of information assets and promoting security culture across the organization.
Responsibilities
- Define, implement and maintain EID’s Information Security Management System (ISMS);
- Ensure compliance with applicable security standards and regulations (e.g. ISO 27001, NIS/NIS2, defence-related requirements);
- Develop, review and enforce information security policies, procedures and controls;
- Identify, assess and manage information security risks and vulnerabilities;
- Monitor security incidents, coordinate response actions and lead incident management processes;
- Oversee third-party and supplier security requirements and assessments;
- Conduct internal audits, risk assessments and support external audits and certifications;
- Promote security awareness and training initiatives across the organization;
- Report on security posture, risks and KPIs to management;
- Work closely with IT, Engineering, Legal and HR teams to ensure security is embedded in processes and projects.
Requirements
- Degree in Information Systems, Computer Engineering, Cybersecurity, or related field;
- Strong sense of responsibility and confidentiality;
- Analytical mindset with a risk-based approach;
- Ability to translate technical security topics into business language;
- Proactive, structured and detail-oriented;
- Comfortable working with cross-functional teams and multiple stakeholders;
- Capable of managing priorities and responding effectively under pressure;
- Motivated to continuously improve security maturity and practices.
- 3–5 years of experience in Information Security, Cybersecurity or similar roles;
- Strong knowledge of information security frameworks and standards (ISO 27001, NIST, CIS, etc.);
- Experience with risk management, incident response and security governance;
- Understanding of network, systems and application security principles;
- Experience working in regulated or high-security environments (industry, defence, critical infrastructure) is a plus;
- Professional certifications (e.g. CISSP, CISM, ISO 27001 Lead Implementer/Auditor) are valued;
- Good communication skills in English.
Benefits
- Competitive compensation package aligned with experience.
- Flexible working solutions and a people-focused culture.
- 22 vacation days plus 2 additional company days.
- Day off on your birthday.
- Private health insurance.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Engineer developing solutions for complex security challenges protecting data and networks. Implementing next generation security solutions for government and commercial clients in hands - on roles.
Information Security Manager responsible for security governance and risk management. Engaging with technical teams for compliance with security standards and best practices.
Customer Support Coordinator delivering technical support for complex security solutions. Collaborating with internal teams and external stakeholders to resolve service incidents while ensuring high performance standards.
Security Access Control Specialist at AMERICAN SYSTEMS managing database queries, document processes, and security measures. Supporting federal government programs through effective security operations in McLean, VA.
Site Security Specialist tasked with implementing security measures for client at Richmond site. Acting as point of contact for security team and client management.
Information Security Specialist responsible for developing ISMS under ISO 27001 and guiding audits. Collaborating closely with IT and management while ensuring compliance and documentation.
Senior Threat Detection & Response Engineer at ICF developing cyber analytic capabilities for federal cybersecurity. Engage in project design and countermeasure capabilities while collaborating with key stakeholders.
Technician in Occupational Safety at Telefônica working on safety programs to prevent workplace accidents. Ensuring compliance with safety regulations in Ribeirão Preto/SP.
Cybersecurity Engineer at Mythics implementing Zero Trust security architecture for federal systems. Collaborating with senior engineers on secure data movement and vulnerability remediation.