This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description This role offers an exciting opportunity to strengthen and manage an organization’s Technology Governance, Risk, and Compliance (GRC) program. The Cybersecurity GRC Specialist will play a critical role in identifying, assessing, and mitigating technology and cybersecurity risks while ensuring adherence to regulatory requirements, industry standards, and internal policies. You will work closely with IT, legal, procurement, and business teams to integrate security best practices across systems, applications, and third-party engagements. This position combines hands-on risk management, policy development, and compliance oversight with a focus on proactive security and incident prevention. Ideal candidates are skilled in IT risk frameworks, cybersecurity practices, and vendor risk management, with the ability to communicate technical concepts to non-technical stakeholders. You will also contribute to continuous improvement initiatives, helping to enhance the overall security posture of the organization. - Develop, implement, and maintain the IT risk management and cybersecurity governance framework. - Conduct risk assessments to identify potential threats, vulnerabilities, and business impacts across systems, networks, and data environments. - Establish, maintain, and enforce IT security policies, standards, and procedures in alignment with regulations and industry best practices. - Provide guidance on secure system and application design, partnering with IT teams to ensure proper security controls are implemented. - Support third-party risk management, evaluating vendor security practices and ensuring compliance with organizational standards. - Assist in incident response planning, investigations, and remediation, contributing to organizational resilience. - Communicate technology and security risks effectively to leadership and stakeholders, translating technical information into actionable business insights. - Participate in audits, questionnaire responses, and contract security reviews to ensure regulatory compliance and risk mitigation. Qualifications - 5+ years of experience in IT Governance, Risk, Compliance (GRC), cybersecurity, or information security. - Bachelor’s degree in Computer Science, Information Security, or a related field preferred. - Security certifications such as CISSP, CISA, CRISC, or equivalent strongly preferred. - Experience with third-party risk management programs and ISO 27001:2022 framework. - Demonstrated ability to lead projects, initiatives, or mentor team members. - Strong understanding of regulatory requirements, risk frameworks, and industry best practices. - Excellent verbal and written communication skills, with the ability to engage both technical and non-technical audiences. - Analytical, detail-oriented, and proactive with a strong sense of ownership. - Occasional travel may be required (10% or less). Benefits - Competitive annual salary range: $105,000–$115,000. - Fully remote work within the United States. - Comprehensive health coverage including medical, dental, vision, and life insurance. - Retirement plan options including 401(k) with company contributions. - Paid time off and holidays. - Professional development and growth opportunities. - Engaging and collaborative work environment focused on security and risk management.

***This position is contingent on contract award*** Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America. RMC is hiring for a Senior Occupational Safety and Health (OSH) Specialist to support our government client. Workload is focused upon supporting the safety and health management needs of a large Federal agency, with significant presence in the Washington, DC area, as well as significant personnel distributed through the United States. This position has the ability to work remotely, in one of the following locations: Kentucky, Pennsylvania, New Jersey or New York.  Position responsibilities include: - Providing safety and health assistance to management, supervisors, employees, and collateral duty safety representatives. - Conducting incident reports and entering reports and findings into safety management systems. - Performing safety audits, inspections, and evaluations to identify potential hazards and implement corrective actions in accordance with regulatory requirements. - Providing specialty safety services and assessments addressing requirements that include ergonomics and industrial hygiene. - Developing and delivering customer training one-on-one, in groups, in classrooms, and via web-delivered media. - Providing outreach to agency employees, promoting safety awareness throughout the organization. - Investigating complaints and reports of unsafe or unhealthful working conditions; provide recommendations for abatement action; and verify completion of abatement action. - Maintaining recordkeeping for injury/illness cases in accordance with OSHA requirements.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The Security Specialist / Associate Network Engineer provides operational security and network support across multiple customer environments within a managed services model. A core requirement of the role is hands-on analysis of security event logs and reports using FortiAnalyzer or an equivalent SIEM platform, supporting incident response, service assurance, and customer reporting. The role is operations-focused and works closely with NOC/SOC functions, senior engineers, and Service Delivery Management to meet SLAs and customer expectations. Core Responsibilities - Log Analysis & Reporting (Mandatory) - Monitor, analyse, and interpret security and network event logs using: - FortiAnalyzer - Another enterprise SIEM platform (e.g. Microsoft Sentinel, Splunk, QRadar, Elastic) - Perform daily and reactive log analysis to identify: - Security incidents and anomalies - Policy violations and blocked traffic - Authentication, VPN, and system-level events - Use SIEM capabilities such as log filtering, correlation, dashboards, and historical search to support: - Incident investigation - Root cause analysis (RCA) - Trend identification - Produce, fine-tune, and analyse customer-facing and internal reports, including: - Scheduled operational/security reports (daily, weekly, monthly) - Incident and post-incident summaries - Audit or compliance-support reporting where required - Validate log ingestion, coverage, and retention, escalating issues such as missing logs, parsing errors, or data gaps. - Managed Services Operational Responsibilities - Provide Level 1–2 operational support for customer network and security services under defined SLAs. - Respond to alerts and events generated by SIEM platforms in accordance with runbooks and escalation procedures. - Execute approved BAU changes relating to security monitoring, logging, and reporting. - Support incident, problem, and change management processes in an ITIL-aligned environment. - Contribute to problem management and service improvement, using log data to support findings. - Maintain accurate customer documentation, including logging scope, alert thresholds, and report schedules. - Participate in 24×7 operations or on-call rotations where required. Qualifications - 1–3 years’ experience in a network operations, security operations, SOC, NOC, or managed services role. - Hands-on experience with FortiAnalyzer or another SIEM platform, including: - Event and security log analysis - Log correlation and investigation - Report creation and scheduling - Ability to interpret firewall, network, and security events in a customer-impact context. - Solid networking fundamentals: TCP/IP, routing, switching basics, NAT and VPN concepts (IPsec / SSL). - Experience working with monitoring tools, ticketing systems, and SOPs in a managed services or operations environment. - Understanding of incident-driven operations and escalation workflows. - Vendor or industry certifications (desirable): Fortinet (FCA / FCP or equivalent), SIEM or security fundamentals. - ITIL Foundation awareness or certification is advantageous. Personal Attributes - Strong analytical mindset with attention to patterns, anomalies, and trends. - Ability to clearly explain log-based findings to senior engineers, service delivery teams, and customers. - Comfortable working under pressure in incident-driven, SLA-based environments. - Disciplined approach to documentation, reporting accuracy, and process adherence. - Motivation to grow into senior security, network, or SOC engineering roles.

***This positions is contingent on contract award*** RMC is hiring for an Occupational Safety and Health (OSH) professional to support the safety and health management needs of a large federal agency.  This position can work remotely in one of the following locations: Kentucky, Maryland, New Jersey, Ohio, and Virginia.  This position will require up to 25% travel. Role & Responsibilities: - Perform safety audits, inspections, and evaluations to identify potential hazards and implement corrective actions in accordance with regulatory requirements. - Provide safety and health assistance to management, supervisors, employees, and collateral duty safety representatives. - Complete incident reports and enter findings into safety management systems. - Provide specialty safety services and assessments addressing requirements that include ergonomics and industrial hygiene. - Develop and deliver customer training one-on-one, in groups, in classrooms, and via web-delivered media. - Provide outreach to agency employees, promoting safety awareness throughout the organization. - Investigate complaints and reports of unsafe or unhealthful working conditions; provide recommendations for abatement action; and verify completion of abatement action. - Maintain recordkeeping for injury/illness cases in accordance with OSHA requirements. Desired Skills: - Experience supporting federal program managers and excellent customer engagement skills. - Ability to monitor and track program/project performance and support reporting requirements. - Ability to analyze and present technical data to technical and non-technical audiences. - Experience with developing and providing health and safety-related training; classroom and web-based. - Strong written and oral communication skills. - Strong skills with Microsoft Office software and utilization of information systems.