Talent.com
Cybersecurity Risk Assessment Consultant
Cybersecurity Risk Assessment ConsultantGDR Defense • Annapolis, Maryland, USA
Cybersecurity Risk Assessment Consultant

Cybersecurity Risk Assessment Consultant

GDR Defense • Annapolis, Maryland, USA
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Join GD Resources for dynamic opportunities in business management and IT where innovation meets excellence.

About the Company :

GD Resources is a Veteran Women-Owned Business Management and Information Technology company committed to excellence. GD Resources provides dynamic opportunities for veterans and professionals alike to contribute to innovative projects and drive success in a collaborative and supportive environment. Join us to make a difference advance your career and grow with a company that values integrity diversity and continuous improvement.

Job Title : Cybersecurity Risk Assessment Consultant

Location : Hybrid (onsite work possibly at various locations throughout Maryland)

Rate : Competitive DOE (W2 or 1099)

Position Overview

We are seeking a Cybersecurity GRC Data & Dashboard Consultant to support follow-on work from approximately 90 completed cybersecurity assessments for a client. The consultant will transform assessment results into structured data dashboards and reports that align with NIST CSF CMMI maturity scoring and the clients Governance Risk and Compliance (GRC) platform (e.g. ServiceNow GRC). This role is ideal for someone with strong cybersecurity domain knowledge GRC platform experience and hands-on skills in data analytics and dashboard development. The consultant will help build real-time interactive views of client-wide and agency-level cybersecurity maturity risks issues and remediation progress to support executive decision-making and continuous improvement.

Responsibilities

  • Convert all assessment results into a format compatible with the clients GRC platform import requirements.
  • Prepare and manage key data outputs including assessment scope maturity scores (CMMI 0 5 by NIST CSF function / category / control) findings risks issues and recommended remediation actions.
  • Provide data files and reports in Client-specified formats and offer reasonable technical assistance to support successful import into the Clients GRC platform.
  • Incorporate agency issue response status data from the Clients GRC platform into reporting and analysis as needed.
  • Design develop and maintain real-time reporting dashboards using cybersecurity assessment data at both client-wide (aggregated) and agency (disaggregated) levels.
  • Build dashboards that show :

Top control categories by maturity

  • Most common constraints
  • Top recommended areas of improvement
  • CMMI-based maturity levels (0 5) across Identify Protect Detect Respond and Recover
  • Top findings risks issues and issue response by agency
  • Ensure all dashboards are interactive allowing users to drill down into underlying assessment data behind summary metrics.
  • Implement robust filters in dashboards to support targeted analysis including filters for : Executive Branch designation enterprise agency agency size tier IT complexity tier and overall Maturity Group.
  • Build agency-level dashboards that :

    • Display average maturity scores by NIST CSF area compared against client-wide averages using side-by-side bar charts

  • Show maturity averages by CSF categories (e.g. Communications Maintenance Access Control) compared to client-wide averages
  • Highlight recommended areas of improvement top 10 findings and percent completion of identified issues
  • Create comparison dashboards that allow users to select one or more agencies and compare ratings and metrics across NIST CSF areas and categories.
  • Integrate historical NIST CSF assessment data from prior years into dashboards to show year-over-year trends at both agency and client-wide levels.
  • Ensure all required data entry is completed before final project close-out unless an exception is approved by the client.
  • Provide reasonable technical assistance to support ongoing imports and integration into the Clients GRC platform.
  • Participate in weekly status meetings with client stakeholders.
  • Prepare concise written status updates on a bi-weekly basis and join additional meetings / discussions as needed.
  • Maintain and follow quality procedures methodologies and standards relevant to this contract including those associated with Client platforms such as ServiceNow GRC.

    • Qualifications

  • Bachelors degree in Cybersecurity Information Technology Computer Science Data Analytics or related field (or equivalent experience).
  • 5 years of experience in cybersecurity GRC or risk management roles supporting government or large enterprise environments.
  • Hands-on experience working with NIST Cybersecurity Framework (NIST CSF) and familiarity with NIST 800-53 and / or NIST 800-171 controls.
  • Experience with CMMI-style maturity scoring (0 5) and translating assessment results into structured data and reports.
  • Practical experience with Governance Risk and Compliance (GRC) platforms preferably ServiceNow GRC or similar Client / enterprise platforms.
  • Strong skills in data analysis and dashboard / report development using tools such as Power BI Tableau or similar visualization platforms.
  • Proven ability to design interactive dashboards with drill-down and filter capabilities for different organizational tiers (e.g. client-wide vs. agency-level).
  • Experience integrating and analyzing historical assessment data to present trends and performance changes over time.
  • Strong attention to detail and ability to ensure data quality consistency and completeness prior to project close-out.
  • Excellent written and verbal communication skills including experience preparing status reports and presenting findings to technical and non-technical stakeholders.
  • Demonstrated commitment to ongoing training and staying current with cybersecurity standards tools and assessment methodologies.
  • Ability to participate in weekly calls and other meetings during standard business hours and collaborate effectively with a remote multi-organization team.

    • GDR is an Equal Opportunity Employer. We consider all qualified applicants without regard to race color religion sex gender identity national origin age disability veteran status or any other protected status under applicable law. We are committed to equal opportunity in all aspects of employment including hiring promotion compensation and benefits.

    Key Skills

    Access Control System,B2C,Business Analysis,Data Structures,Affiliate Marketing,Loans

    Employment Type : Full Time

    Experience : years

    Vacancy : 1

    serp_jobs.job_alerts.create_a_job

    Cybersecurity Consultant • Annapolis, Maryland, USA

    Job_description.internal_linking.related_jobs
    Lead BeyondTrust Consultant

    Lead BeyondTrust Consultant

    Cayuse Holdings • Annapolis, MD, United States
    serp_jobs.job_card.temporary
    Job Title : Lead BeyondTrust Consultant.Contract Length : 6 months - Potentially Renewable.We are seeking a highly skilled BeyondTrust Expert & Lead Consultant to join our team on a remote, 6-month c...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Cyber Engagement Lead, Public Sector (TS Clearance)

    Cyber Engagement Lead, Public Sector (TS Clearance)

    Scale AI • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    A leading AI solutions provider in Annapolis seeks an Engagement Manager to drive AI solutions for national security customers. The ideal candidate will have over 5 years in program management, stro...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Risk Management Framework Coordinator 2

    Risk Management Framework Coordinator 2

    ARSIEM Corporation • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    At ARSIEM Corporation we are committed to fostering a proven and trusted partnership with our government clients.We provide support to multiple agencies across the United States Government.ARSIEM h...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_hours • serp_jobs.job_card.promoted • serp_jobs.job_card.new
    Principal Risk Associate | Retail Bank Tech

    Principal Risk Associate | Retail Bank Tech

    Capital One • Annapolis, MD, United States
    serp_jobs.job_card.full_time +1
    Principal Risk Associate | Retail Bank Tech.The Principal Associate within the Tech, Cyber, Data, and Resiliency (TCDR) team will strategically apply analytical expertise to proactively identify, m...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Senior Corporate Compliance & Risk Leader (Remote)

    Senior Corporate Compliance & Risk Leader (Remote)

    United Therapeutics • Annapolis, MD, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A leading biotech company based in Maryland seeks a Senior Corporate Compliance Director to oversee risk management activities. The role requires 15+ years in compliance roles, strong leadership ski...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    PayPal Risk Operations Associate

    PayPal Risk Operations Associate

    TradeJobsWorkforce • 21017 Riverside, MD, US
    serp_jobs.job_card.full_time
    An exciting opportunity awaits for a PayPal Risk Operations Associate to perform daily responsibilities with dedication.Provide excellent interactions with customers and colleagues.Stay adaptable i...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Director, Product Marketing Network Detection and Response (NDR)

    Director, Product Marketing Network Detection and Response (NDR)

    Trellix • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    Director, Product Marketing Network Detection and Response (NDR).Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work. Our comprehensive, GenAI-powered platform...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Senior GRC & InfoSec Risk Manager — Remote

    Senior GRC & InfoSec Risk Manager — Remote

    Datavant • Annapolis, MD, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A leading healthcare data company seeks a Senior Risk Management professional to enhance enterprise-wide information security initiatives. This role involves managing risk identification, quantifica...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_hours • serp_jobs.job_card.promoted • serp_jobs.job_card.new
    Risk Management Framework Coordinator - Level 2

    Risk Management Framework Coordinator - Level 2

    CACI International • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    Risk Management Framework Coordinator - Level 2.Minimum Clearance Required to Start : TS / SCI with Polygraph.Percentage of Travel Required : None. We are seeking a skilled and motivated individual to j...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Staff ML Engineer - Risk & Fraud Platform

    Staff ML Engineer - Risk & Fraud Platform

    Coinbase • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    A leading cryptocurrency platform is seeking a Machine Learning Engineer to develop and deploy AI / ML models aimed at preventing fraud and account takeovers. The role requires collaboration with vari...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Lead Federal Project Risk Analyst

    Lead Federal Project Risk Analyst

    Oracle • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    We're on a journey to advance how health happens with technologies that support clinicians, inspire innovation, empower patients, and save lives. Our mission? To create a human-centric healthcare ex...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Cyber Engagement Lead, Public Sector AI

    Cyber Engagement Lead, Public Sector AI

    Scale AI, Inc. • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    A leading AI solutions firm is seeking an Engagement Manager to coordinate delivery of AI workflows for national security. You will manage customer relationships, lead project teams, and oversee imp...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Hybrid Regional Director, Enterprise Security Sales

    Hybrid Regional Director, Enterprise Security Sales

    Trellix • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    A leading cybersecurity firm is looking for a Regional Director, Sales, in Annapolis, Maryland.This senior leadership role is responsible for driving revenue growth and market penetration within a ...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Enterprise Performance Management (EPM) - Senior - Tech Consulting - Location Open

    Enterprise Performance Management (EPM) - Senior - Tech Consulting - Location Open

    Ernst & Young Oman • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    At EY, we’re all in to shape your future with confidence.We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Senior Risk Management Analyst

    Senior Risk Management Analyst

    Mariner Finance • Nottingham, MD, United States
    serp_jobs.job_card.full_time +1
    Senior Risk Management Analyst -.Work hours will depend on the business hours of the time zone serviced.To the extent permitted by law, the Company may, in its sole discretion, change the work sche...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted
    Payments Risk Analyst II, Operations

    Payments Risk Analyst II, Operations

    Coinbase • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    Ready to be pushed beyond what you think you’re capable of?.At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, ...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_30 • serp_jobs.job_card.promoted
    Manager, GRC Risk Management

    Manager, GRC Risk Management

    Datavant • Annapolis, MD, United States
    serp_jobs.job_card.full_time
    Datavant is a data platform company and the world’s leader in health data exchange.Our vision is that every healthcare decision is powered by the right data, at the right time, in the right format....serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_hours • serp_jobs.job_card.promoted • serp_jobs.job_card.new
    Morpheus Platform Lead - Change & Adoption (Remote)

    Morpheus Platform Lead - Change & Adoption (Remote)

    Cayuse Holdings • Annapolis, MD, United States
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    A technology consulting firm is seeking a Lead Morpheus Consultant to drive adoption and operational success of the Morpheus platform on a remote basis. The ideal candidate will have expertise in st...serp_jobs.internal_linking.show_more
    serp_jobs.last_updated.last_updated_variable_days • serp_jobs.job_card.promoted