Alluvionic Inc. logo
Alluvionic Inc.

Project Assurance®

Cybersecurity Analyst II – Certified CMMC Professional, CCP

Security AnalystSecurity AnalystContractRemoteSeniorTeam 11-50Since 2013H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

10 days ago

Salary

0

Seniority

Senior

Professional Certificate3 yrs expEnglishCyber SecurityPMP

Job Description

Cybersecurity Analyst II – Certified CMMC Professional, CCP

Alluvionic Inc.

• Secure the future of compliance—lead CMMC readiness with your CCP expertise and make an impact where cybersecurity meets strategy. • Support clients in achieving Cybersecurity Maturity Model Certification (CMMC) readiness. • Play a critical role in delivering gap analysis, developing and implementing remediation plans, and supporting process documentation and incident response strategies. • Deliver CMMC readiness services, including: Gap analysis, Process remediation, Security documentation, Incident response planning and testing. • Collaborate with stakeholders to ensure understanding and adoption of CMMC requirements. • Contribute to the development of policies, procedures, and system security plans (SSPs). • Support ongoing security assessments and readiness tracking.

Job Requirements

  • Active Certified CMMC Professional (CCP) certification
  • 3–5+ years of experience in cybersecurity, compliance, or IT risk
  • PMP certification is highly desirable, particularly for candidates interested in supporting program/project management of complex CMMC implementations
  • Experience with Organizational Change Management (OCM) in cybersecurity or compliance programs
  • Familiarity with GRC tools and compliance platforms
  • Demonstrated experience with CMMC gap assessments and remediation planning
  • Knowledge of NIST 800-171 and other relevant frameworks
  • Strong process documentation and technical writing skills

Benefits

  • Working at Alluvionic means being surrounded by helpful and brilliant people who want to support your career growth.
  • We are a company that puts people first and will help you get where you want to go.
  • When we make mistakes, we own them, fix them, and improve our processes so we do better next time.
  • We work hard and never forget to have fun, especially at happy hour.
  • We live by our company values of Family, Integrity, Professionalism, Innovation, Forward-Progress, Organization, and Communication.

Related Job Pages

More Security Analyst Jobs

Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Identify, record, and track risks, issues, non-conformities, and security action plans. • Support assessments of adherence to standards, internal policies, frameworks, and regulatory requirements. • Produce risk analyses, opinions, and reports for leadership, committees, and responsible areas. • Monitor deadlines, owners, evidence, and the effectiveness of mitigation plans. • Contribute to the improvement of the cyber risk management process and control governance. • Support internal and external audits, inspections, and regulatory requests. • Integrate information from incidents, vulnerabilities, third parties, IAM, AppSec, and architecture to provide a consolidated risk view. • Act proactively in initiatives (projects, technology changes, new products) by identifying security risks and proposing controls prior to production rollout. • Define, monitor, and report metrics that measure risk exposure and control effectiveness.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• In this role, you will work directly on Red Team activities. • Plan and execute Red Team exercises, offensive validations, and attack simulations. • Assess exposure of environments, identities, applications, networks, endpoints, and cloud. • Safely exploit vulnerabilities in a controlled manner, documenting attack paths and impacts. • Support the Blue Team and CSIRT with inputs to improve detections, playbooks, and controls. • Produce technical reports with evidence, risk analysis, recommendations, and prioritization. • Re-validate fixes and support tracking of mitigation plans. • Contribute to the methodology, ethics, security, and governance of offensive activities.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Assess vulnerabilities in applications, APIs, libraries, components, and pipelines. • Support squads in remediating vulnerabilities and adopting secure development practices. • Operate and enhance SAST, DAST, and SCA tools, API security solutions, and bot protection. • Support vulnerability management by prioritizing risks based on criticality and exposure. • Perform technical risk analyses of applications, integrations, and digital user journeys. • Contribute to secure development standards, technical guides, checklists, and training. • Support automation, shift-left initiatives, and continuous security improvements across the SDLC.

Brazil
ECS Tech Inc logo

SOC Analyst II

ECS Tech Inc

All candidates must meet the following criteria: Must be a US Citizen, no dual Citizenships. Must be able to secure a Public trust clearance. Must be able to work across multiple programs across the Federal and DOD space. The core values that ECS looks for in an engagement manager include: Teamwork, Respect, Accountability, Integrity, and Leadership.

Security Analyst10 days ago
Full TimeRemoteH1B No Sponsor

Role Description Everforth ECS is seeking a SOC Analyst II to work Remotely. Please Note: This position is contingent upon contract award. - Performs SOC Tier 1–3 continuous monitoring of SIEM, SOAR, EDR, IAM, DLP, vulnerability management, and other automated security platforms. - Conducts triage, threat analysis, threat hunting, correlation, enrichment, risk mitigation, and incident response activities. - Documents investigations and artifacts in accordance with IRS and DHS reporting requirements and supports insider threat program and forensic collection. - Collaborates with senior analysts and incident response teams to mitigate risks, enhance security monitoring capabilities, and improve the organization's security posture. Qualifications - Bachelors’ Degree in Cybersecurity, IT, or related field. - 3+ years of SOC experience. - IRS CI - IRS High Risk Clearance. - Knowledge of SIEM, SOAR, EDR, DLP, IAM/PAM tools. - Experience with incident response, threat intelligence, threat hunting, triage, and investigation. - Understanding of federal incident reporting (NIST 800-53, FISMA, IRM 10.8, DHS/Treasury requirements). - Ability to document cases and perform forensic support.

United States