Information Privacy and Security, Senior Advisor - Governance, Risk, & Compliance

Responsibilities

Peraton is seeking a Senior Information Privacy and Security, Senior Advisor in support of our IT Operations Cyber Risk and Compliance team. A top candidate will be well-versed in regulations and common contractual requirements affecting the Federal contracting community and Defense Industrial Base. This includes in-depth, current knowledge of the DIB Cyber Assessment Center requirements, Cybersecurity Maturity Model Certification, cyber executive orders, and relevant federal acquisition regulations. Candidates should be able to demonstrate significant prior industry engagement on such requirements with companies of similar size and scope.  

Responsibilities: 

• Maintain cybersecurity compliance identification, mitigation, and acceptance processes in coordination with security and IT operations. Works with business and functional areas to perform compliance assessments and make appropriate treatment decisions. 
• Provide information security governance, risk, and compliance (GRC) support for multiple businesses and programs in Peraton’s broad portfolio of businesses in defense, cyber, civilian, and space/intel. 
• Maintenance and reporting of key information security metrics and reports for both operational management and corporate executives. 
• Monitors regulatory environment for impact on security and IT risk programs and initiatives. 
• Proactively build relationships with senior leaders throughout the organization, ensuring support for strategic cyber initiatives, while assisting in cybersecurity compliance goals in a diverse environment. 
• Responsible for compliance with DFARS/NIST 800-171, ISO 27001, ISO 31000, NIST Cybersecurity Framework, ITAR, and other Federal regulations, including any new regulatory initiatives applicable to the business (e.g. GDPR), and support control audits. 
• Assess and monitor DevNet and OffNet environments to verify compliance with applicable contractual security policies and standards. 

Qualifications

Required Qualifications: 

• BS (12+ yrs) or MS (10+ yrs) in System Engineering, Computer Science, Information Systems, or related discipline. Equivalent experience may be considered in lieu of degree. 
• Proven experience working and assessing security controls within DoD and Federal enterprise environments. 
• Experience creating and maintaining NIST SP 800-171, NIST SP 800-53, and ISO/IEC 27001 frameworks and documentation (SSP, POA&M, CP, CM Plan, and others) 
• Strong understanding of information security and the relationship between threat, vulnerability, and information value in the context of risk management. 
• Ability to work with and guide the company’s operational units in managing overall cybersecurity compliance, complying with Federal mandates, and meeting client security requirements. 
• Strong understanding of risk-based decision-making (i.e. risk analysis, mitigation, resolution, acceptance, etc.) 
• US Citizenship

 

Desired Qualifications: 

• CISSP, CISA, CRISC or information security professional certification applicable to risk management. 
• Ability to analyze complex cybersecurity compliance problems, identify root cause and recommend/negotiate reasonable solutions. 
• Ability to work independently and collaboratively with cross-functional teams. 

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$146,000 - $234,000. This represents the typical salary range for this position based on experience and other factors.

EEO

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.