Project Assurance®
Cybersecurity Analyst II – Certified CMMC Professional, CCP
Location
United States
Posted
10 days ago
Salary
0
Seniority
Senior
Job Description
Cybersecurity Analyst II – Certified CMMC Professional, CCP
Alluvionic Inc.
• Secure the future of compliance—lead CMMC readiness with your CCP expertise and make an impact where cybersecurity meets strategy. • Support clients in achieving Cybersecurity Maturity Model Certification (CMMC) readiness. • Play a critical role in delivering gap analysis, developing and implementing remediation plans, and supporting process documentation and incident response strategies. • Deliver CMMC readiness services, including: Gap analysis, Process remediation, Security documentation, Incident response planning and testing. • Collaborate with stakeholders to ensure understanding and adoption of CMMC requirements. • Contribute to the development of policies, procedures, and system security plans (SSPs). • Support ongoing security assessments and readiness tracking.
Job Requirements
- Active Certified CMMC Professional (CCP) certification
- 3–5+ years of experience in cybersecurity, compliance, or IT risk
- PMP certification is highly desirable, particularly for candidates interested in supporting program/project management of complex CMMC implementations
- Experience with Organizational Change Management (OCM) in cybersecurity or compliance programs
- Familiarity with GRC tools and compliance platforms
- Demonstrated experience with CMMC gap assessments and remediation planning
- Knowledge of NIST 800-171 and other relevant frameworks
- Strong process documentation and technical writing skills
Benefits
- Working at Alluvionic means being surrounded by helpful and brilliant people who want to support your career growth.
- We are a company that puts people first and will help you get where you want to go.
- When we make mistakes, we own them, fix them, and improve our processes so we do better next time.
- We work hard and never forget to have fun, especially at happy hour.
- We live by our company values of Family, Integrity, Professionalism, Innovation, Forward-Progress, Organization, and Communication.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Information Security Analyst III – Cyber Risk Management
Cooperativa Central AilosSeu talento em expansão.
• Identify, record, and track risks, issues, non-conformities, and security action plans. • Support assessments of adherence to standards, internal policies, frameworks, and regulatory requirements. • Produce risk analyses, opinions, and reports for leadership, committees, and responsible areas. • Monitor deadlines, owners, evidence, and the effectiveness of mitigation plans. • Contribute to the improvement of the cyber risk management process and control governance. • Support internal and external audits, inspections, and regulatory requests. • Integrate information from incidents, vulnerabilities, third parties, IAM, AppSec, and architecture to provide a consolidated risk view. • Act proactively in initiatives (projects, technology changes, new products) by identifying security risks and proposing controls prior to production rollout. • Define, monitor, and report metrics that measure risk exposure and control effectiveness.
Information Security Analyst III – Offensive Security
Cooperativa Central AilosSeu talento em expansão.
• In this role, you will work directly on Red Team activities. • Plan and execute Red Team exercises, offensive validations, and attack simulations. • Assess exposure of environments, identities, applications, networks, endpoints, and cloud. • Safely exploit vulnerabilities in a controlled manner, documenting attack paths and impacts. • Support the Blue Team and CSIRT with inputs to improve detections, playbooks, and controls. • Produce technical reports with evidence, risk analysis, recommendations, and prioritization. • Re-validate fixes and support tracking of mitigation plans. • Contribute to the methodology, ethics, security, and governance of offensive activities.
• Assess vulnerabilities in applications, APIs, libraries, components, and pipelines. • Support squads in remediating vulnerabilities and adopting secure development practices. • Operate and enhance SAST, DAST, and SCA tools, API security solutions, and bot protection. • Support vulnerability management by prioritizing risks based on criticality and exposure. • Perform technical risk analyses of applications, integrations, and digital user journeys. • Contribute to secure development standards, technical guides, checklists, and training. • Support automation, shift-left initiatives, and continuous security improvements across the SDLC.
SOC Analyst II
ECS Tech IncAll candidates must meet the following criteria: Must be a US Citizen, no dual Citizenships. Must be able to secure a Public trust clearance. Must be able to work across multiple programs across the Federal and DOD space. The core values that ECS looks for in an engagement manager include: Teamwork, Respect, Accountability, Integrity, and Leadership.
Role Description Everforth ECS is seeking a SOC Analyst II to work Remotely. Please Note: This position is contingent upon contract award. - Performs SOC Tier 1–3 continuous monitoring of SIEM, SOAR, EDR, IAM, DLP, vulnerability management, and other automated security platforms. - Conducts triage, threat analysis, threat hunting, correlation, enrichment, risk mitigation, and incident response activities. - Documents investigations and artifacts in accordance with IRS and DHS reporting requirements and supports insider threat program and forensic collection. - Collaborates with senior analysts and incident response teams to mitigate risks, enhance security monitoring capabilities, and improve the organization's security posture. Qualifications - Bachelors’ Degree in Cybersecurity, IT, or related field. - 3+ years of SOC experience. - IRS CI - IRS High Risk Clearance. - Knowledge of SIEM, SOAR, EDR, DLP, IAM/PAM tools. - Experience with incident response, threat intelligence, threat hunting, triage, and investigation. - Understanding of federal incident reporting (NIST 800-53, FISMA, IRM 10.8, DHS/Treasury requirements). - Ability to document cases and perform forensic support.


