• Create and maintain security solutions on Enea client platform • Keep up to date with the telecoms threat landscape • Analyse data collected from customer deployments to identify and investigate threats • Provide security reviews for Enea clients; independently field client questions and manage client expectations. • Work on your own initiative, with minimal supervision, but with the support of a team lead and global team of analysts. • Some shift work (Saturday or Sunday) will be required for this role.

Support strategic collaboration initiatives with industry partners, engage stakeholders, develop operational plans, and coordinate cyber defense exercises to enhance critical infrastructure and improve the cybersecurity ecosystem.

Role Description As a Certified CCA Assessor, you’ll work with leading manufacturing, IT, Cloud, professional service organizations, and the Defense Industrial Base (DIB) serving the United States Department of Defense (DOD). You will be part of a team that supports the efforts of these organizations to satisfy DOD's Cybersecurity Maturity Model Certification and related government regulations as an assessor to certify organizations’ compliance with CMMC requirements. All CMMC Assessor positions are full time remote. Occasional or limited travel may vary based on client needs. What you'll do - Support assessing whether members of the DIB have adequately prepared for compliance with CMMC regulations. - Evaluate an organization’s readiness for assessment, which includes tasks such as: - Collect and examine evidence, observe, test and analyze results. - Clearly and effectively score OSC practices and validate preliminary results. - Generate preliminary report findings. - Finalize findings for an assessment report and deliver recommended assessment results. Qualifications - Working knowledge of the controls and implementation of DFARS Clause 252.204-7012 (NIST 800-171). - Direct involvement with building reports that clearly communicate met and not met objectives in accordance with assessment guidelines. - Ability to track detailed tasks and ensure timely delivery of project deliverables. - Excellent communication and problem-solving skills. - Critical thinking, and ability to balance security requirements with mission needs. - Must be well-organized and detail-oriented with the ability to coordinate, prioritize multiple tasks, and be adaptable to change to accomplish assignments. - Ability to work independently and as a part of a team. - Professional and polished interpersonal and communication skills with team members and stakeholders. - Hands-on security and consulting experience. Requirements - Completed Bachelor’s degree from an accredited university, preferably in an IT related field. - US Citizenship Required. - Currently possess completed Tier 3 Suitability with the Cyber AB. - Required: Completed CCA Certification, with completed/active Tier 3 Suitability with the Cyber AB. - Minimum 5 to 7 years of overall experience in the IT Security / Cybersecurity industry. - Overall 3 years in a Client facing role providing risk assessment, advisory services, and/or consulting - ideally in a federal environment. - Previous experience working for a CMMC RPO or C3PAO (Candidate or Authorized), or other 3PAO assessments is preferred. Bonus Points - Additional cybersecurity certifications and experience highly desired (i.e., CISSP, CISM). - Experience with NIST 800-37, NIST 800-53, and FISMA. - Experience with FedRAMP assessments and cloud security. - DIB experience. Benefits - Paid parental leave. - Flexible time off. - Certification and training reimbursement. - Digital mental health and wellbeing support memberships. - Comprehensive insurance options.

• SOC Analysts at AHEAD monitor customer environments and perform Incident Detection, Validation, and Incident Reporting. • SOC Analysts are responsible for triaging events, incidents, and reporting validated incidents to the customer for incident response. • Perform troubleshooting of customer issues. • Monitor security feeds streaming from client servers, network devices, and end user workstations. • Operate and maintain network security equipment at client locations. • Perform information security event analysis and must possess knowledge of operating systems, TCP/IP networking, network attacks, vulnerability management, and log analysis.