Cybersecurity GRC Engineer | ONSITE

3 days ago

Dallas, TX, United States Kaav Inc. Full time
Work Location: ONSITE - Dallas, TX

Engineer, GRC & Assessments (ANSP Program)

FOCUS
• Ensure secure aircraft, ground, and communications systems relied upon for our ANSP Program, with concentrated attention towards risk, governance, vulnerability management, policies, and standards.

RESPONSIBILITIES
• Develop and implement security policies and standards, ensuring compliance with industry regulations and best practices.
• Conduct risk assessments and vulnerability assessments to identify1 and mitigate security risks.
• Manage the vulnerability management program, including vulnerability scanning, penetration testing, and remediation.
• Develop and deliver security awareness training programs.
• Collaborate with stakeholders to integrate security considerations into the design and development of new aviation systems.
• Stay informed about emerging threats and vulnerabilities in the aviation industry.

TOP SKILLS:

Minimum 3 years hands-on experience on below stack:

1. Risk Management Frameworks: (e.g., NIST RMF, NIST CSF, ISO 27005)
2. Risk Assessment Methodologies: (e.g., NIST 800-30, Threat Modeling)
3. GRC Platforms: (e.g., ServiceNow GRC, RSA Archer)
4. Vulnerability Management Tools: (e.g., Tenable Nessus, Tanium)

SKILLS:
• Cybersecurity Risk & Governance Expertise: Requires 3-5 years of progressive cybersecurity engineering experience with a deep understanding of risk management frameworks (NIST SP 800-37, ISO 27005), governance principles, vulnerability management, and security policy development.
• Risk Assessment & Mitigation: Proven experience conducting risk assessments (NIST 800-30, NIST CSF), identifying vulnerabilities, analyzing threats, and developing effective mitigation strategies.
• Vulnerability Management Program Expertise: Expertise in vulnerability management tools and processes, including vulnerability scanning, penetration testing coordination, vulnerability prioritization, and remediation tracking.
• Policy & Standard Development & Implementation: Strong ability to develop, document, and implement security policies, standards, and procedures that align with industry best practices, regulatory requirements, and risk tolerance
• Communication & Stakeholder Collaboration: Excellent communication (written and verbal) and interpersonal skills to effectively communicate security risks, governance strategies, and policy recommendations to diverse stakeholders, including technical teams, management, and external partners.

PREFERRED CERTIFICATIONS:
• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CISA (Certified Information Systems Auditor)
• CRISC (Certified in Risk and Information Systems Control)
• CompTIA Security+

TOOLS AND TECHNOLOGIES:
• Risk Management Frameworks: (e.g., NIST RMF, NIST CSF, ISO 27005)
• Risk Assessment Methodologies: (e.g., NIST 800-30, Threat Modeling)
• GRC Platforms: (e.g., ServiceNow GRC, RSA Archer)
• Vulnerability Management Tools: (e.g., Tenable Nessus, Tanium)
• Penetration Testing Understanding: (Familiarity with tools & methodologies for report interpretation)
• Policy & Collaboration Tools: (e.g., SharePoint, Microsoft Teams, Policy Management Platforms)

Required Skills : Network Security

Basic Qualification :

Additional Skills :

Background Check : No

Drug Screen : No

  • GRC (Governance,Risk and Compliance) Analyst

    7 days ago

    Dallas, TX, United States CData Software Full time

    GRC (Governance,Risk and Compliance) Analyst Dallas, TX Onsite role (atleast 3 days a week to office) Experience in IT Security, Audit, Compliance, and Risk Management. Good to Have - exposure to ARCHER tool and experience working in Big 4 company . Hands on experience creating documents from scratch for standard policies and procedures, SOX control...

  • GRC (Governance,Risk and Compliance) Analyst

    1 week ago

    Dallas, TX, United States CData Software Full time

    GRC (Governance,Risk and Compliance) Analyst Dallas, TX Onsite role (atleast 3 days a week to office) Experience in IT Security, Audit, Compliance, and Risk Management. Good to Have - exposure to ARCHER tool and experience working in Big 4 company . Hands on experience creating documents from scratch for standard policies and procedures, SOX control...

  • GRC (Governance,Risk and Compliance) Analyst

    3 days ago

    Dallas, TX, United States CData Software Full time

    GRC (Governance,Risk and Compliance) Analyst Dallas, TX Onsite role (atleast 3 days a week to office) Experience in IT Security, Audit, Compliance, and Risk Management. Good to Have - exposure to ARCHER tool and experience working in Big 4 company . Hands on experience creating documents from scratch for standard policies and procedures, SOX control...

  • Director of Cybersecurity Operations

    2 weeks ago

    Dallas, TX, United States ati Full time

    Proven to Perform. From the edges of space to the bottoms of ocean, our materials are proven to perform -- and so is our team. We're hiring high performers as proven as our products. Join us. Why ATI Materials? At ATI Materials, we are innovators in advanced materials science, supporting aerospace, defense, energy, and industrial markets worldwide....

  • Director of Cybersecurity Operations

    2 days ago

    Dallas, TX, United States ati Full time

    Proven to Perform. From the edges of space to the bottoms of ocean, our materials are proven to perform -- and so is our team. We're hiring high performers as proven as our products. Join us. Why ATI Materials? At ATI Materials, we are innovators in advanced materials science, supporting aerospace, defense, energy, and industrial markets worldwide....

  • Director of Cybersecurity Operations

    5 days ago

    Dallas, TX, United States ati Full time

    Proven to Perform. From the edges of space to the bottoms of ocean, our materials are proven to perform -- and so is our team. We're hiring high performers as proven as our products. Join us. Why ATI Materials? At ATI Materials, we are innovators in advanced materials science, supporting aerospace, defense, energy, and industrial markets worldwide....

  • SAP Security and GRC Admin

    1 week ago

    Dallas, TX, United States Addison Group Full time

    SAP Security and GRC AdminDirect Hire - Must be authorized to work in the United States now and in the future without assistancePay: 130-155K plus bonus and stock, 100% medical insurance for family, dental, vision, 401K match, PTO.Open to candidate in Oklahoma or Texas - onsite Our client is looking to add a full-time employee to assist a contract with their...

  • Cybersecurity Training

    1 week ago

    Dallas, TX, United States Kaav Inc. Full time

    Work Location: ONSITE - Dallas, TX Description: This Cybersecurity Training & Awareness Analyst will work as part of the Cybersecurity organization to build, operate, and maintain a variety of programs designed to educate all levels of AA team members about key cyber threats with the goal of reducing risk across the organization. Responsibilities: Actively...

  • GRC (Governance, Risk and Compliance) Analyst

    2 weeks ago

    Dallas, TX, United States Diverse Lynx Full time

    Position: GRC (Governance, Risk and Compliance) Analyst Location : Dallas, TX - Onsite Type of Hire :- Long Term Contract Role Description: Customer preference experience having worked as GRC analyst in BIG 4 company. • bility to work effectively in a team and coordinate efforts across different teams to achieve IT GRC goals. • Proficiency...

  • GRC (Governance, Risk and Compliance) Analyst

    7 days ago

    Dallas, TX, United States Diverse Lynx Full time

    Position: GRC (Governance, Risk and Compliance) Analyst Location : Dallas, TX - Onsite Type of Hire :- Long Term Contract Role Description: Customer preference experience having worked as GRC analyst in BIG 4 company. • bility to work effectively in a team and coordinate efforts across different teams to achieve IT GRC goals. • Proficiency...