We are seeking an IT Auditor to serve as a critical resource for audit, investigative, and incident response services for one of our government customers. The ideal candidate will possess deep technical expertise in cybersecurity and possess hands-on experience in digital forensics, cybersecurity audits, and incident response. They will provide expert guidance and support ensuring a comprehensive and accurate understanding of the evidence and facilitating informed decision-making in compliance with legal and regulatory requirements.
Key Responsibilities:
- Audit and Investigative Leadership:
- Lead the investigation of cybersecurity incidents, including unauthorized access, data breaches, malware infections, insider threats, and other digital security violations.
- Conduct forensic analysis on compromised systems, networks, and digital devices, collecting and preserving evidence in compliance with industry best practices and legal requirements.
- Provide subject matter expertise in cybersecurity during internal and external audits, offering insights into the effectiveness of security controls and helping identify vulnerabilities or areas of non-compliance.
- Analyze and report on the findings of digital forensics, identifying any relevant patterns of activity or security incidents.
- Incident Response:
- Lead and coordinate the response to cybersecurity incidents within agency offices, ensuring timely detection, containment, and mitigation of security breaches.
- Collaborate with incident response teams to assess and minimize damage, identify attack vectors, and develop post-incident action plans to prevent future breaches.
- Develop and implement cybersecurity protocols and procedures for incident response, including reporting, escalation, and remediation processes.
- Collaboration and Support:
- Work closely various stakeholders to provide cybersecurity expertise and guidance during audits and investigations, ensuring that findings are robust and actionable.
- Mentor and train internal teams or stakeholders on cybersecurity best practices, including security control frameworks, digital forensics techniques, and effective incident response strategies.
- Stay up to date with emerging cybersecurity threats, vulnerabilities, and trends to continuously improve audit and investigative practices.
- Reporting and Documentation:
- Prepare detailed and clear technical reports on investigative findings, presenting complex cybersecurity concepts in a digestible manner for non-technical stakeholders.
- Document investigative processes and maintain evidence logs in accordance with legal and regulatory standards.
- Ensure that all investigative and audit activities are in full compliance with relevant laws, regulations, and internal policies.
Location/Travel: This role will be able to work primarily remotely but will require travel to company and government client site locations across Florida and the Washington DC metro region on an as needed basis. Preference will be given to candidates who are local to the DC Metro Region or who reside in Florida.
Basic Qualifications:
- At least 5 years of experience in IT Audit, Security Assessments, Risk Analysis, or IT Investigations
Preferred Qualifications:
- Bachelor's degree or higher in Cybersecurity, Information Technology, Computer Science, or related field.
- 7+ years of experience in cybersecurity, with a focus on audit, digital forensics, incident response, or investigative services.
- Relevant security certifications such as:
- CISA (Certified Information Systems Auditor)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Incident Handler (GCIH)
- Certified Information Systems Security Professional (CISSP)
- CompTIA Security+ or CompTIA Cybersecurity Analyst (CySA+)
- Certified Cloud Security Professional (CCSP) (for cloud environments)
About Connsci
At Connsci, our mission is to be a trusted strategic partner for our clients, helping them achieve impactful results by addressing mission-critical issues that affect their bottom line. We recognize the importance of customizing our services to best fit our clients' needs and understanding what it takes to propel their organizations forward. By implementing industry-leading best practices and leveraging our multifaceted experience and expertise, we deliver services that are essential for any organization aiming to reach its goals.
What You Can Expect:
- Collaboration and Innovation: Work in an environment where collaboration and innovation are key. You'll have the opportunity to contribute to projects that make a real difference for our clients.
- Professional Growth: Be part of a team that values professional development. We offer opportunities for growth and advancement, allowing you to enhance your skills and career.
- Impactful Work: Engage in meaningful work that addresses mission-critical issues and supports organizations in achieving their goals.
By joining Connsci, you'll become part of a dedicated team that is committed to delivering strategic, impactful solutions tailored to our clients' unique needs, enabling them to achieve their goals with confidence and efficiency. If you're passionate about cybersecurity and IT services, and eager to contribute to a dynamic team, we encourage you to explore opportunities with us.
At this time, Connsci will not sponsor a new applicant for employment authorization for this position.
Connsci is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.
This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. Connsci makes hiring decisions based solely on qualifications, merit, and business needs at the time.
