Overseas Contractor
Apply NowCompany: Futran Tech Solutions Pvt. Ltd.
Location: Dallas, TX 75217
Description:
Location - Dallas
In person Client Interview.
Focus Risk Governance Vulnerability Management Policies and Standards Engineer GRC Assessments ANSP Program FOCUS Ensure secure aircraft ground and communications systems relied upon for our ANSP Program with concentrated attention towards risk governance vulnerability management policies and standards RESPONSIBILITIES Develop and implement security policies and standards ensuring compliance with industry regulations and best practices Conduct risk assessments and vulnerability assessments to identify1 and mitigate security risks Manage the vulnerability management program including vulnerability scanning penetration testing and remediation Develop and deliver security awareness training programs Collaborate with stakeholders to integrate security considerations into the design and development of new aviation systems Stay informed about emerging threats and vulnerabilities in the aviation industry SKILLS Cybersecurity Risk Governance Expertise Requires 35 years of progressive cybersecurity engineering experience with a deep understanding of risk management frameworks NIST SP 80037 ISO 27005 governance principles vulnerability management and security policy development Risk Assessment Mitigation Proven experience conducting risk assessments NIST 80030 NIST CSF identifying vulnerabilities analyzing threats and developing effective mitigation strategies Vulnerability Management Program Expertise Expertise in vulnerability management tools and processes including vulnerability scanning penetration testing coordination vulnerability prioritization and remediation tracking Policy Standard Development Implementation Strong ability to develop document and implement security policies standards and procedures that align with industry best practices regulatory requirements and risk tolerance Communication Stakeholder Collaboration Excellent communication written and verbal and interpersonal skills to effectively communicate security risks governance strategies and policy recommendations to diverse stakeholders including technical teams management and external partners PREFERRED CERTIFICATIONS CISSP Certified Information Systems Security Professional CISM Certified Information Security Manager CISA Certified Information Systems Auditor CRISC Certified in Risk and Information Systems Control CompTIA Security TOOLS AND TECHNOLOGIES Risk Management Frameworks eg NIST RMF NIST CSF ISO 27005 Risk Assessment Methodologies eg NIST 80030 Threat Modeling GRC Platforms eg ServiceNow GRC RSA Archer Vulnerability Management Tools eg Tenable Nessus Tanium Penetration Testing Understanding Familiarity with tools methodologies for report interpretation Policy Collaboration Tools eg SharePoint Microsoft Teams Policy Management Platforms Surrounding teamkey projects Develop and implement a Cybersecurity Risk Management Framework for ANSP Ground Systems Based on NIST RMF or ISO 27005 Establish and mature vulnerability management program for aircraft ground infrastructure Develop and deploy a suite of Security Policies and Standards for Aviation System Development Lifecycle SDLC Conduct a comprehensive Cybersecurity Risk Assessment of a Critical Aviation Ground Systems using NIST 80030 Develop and deliver targeted Security Awareness Training for Aviation Operations Personnel on a Specific Risk Area
In person Client Interview.
Focus Risk Governance Vulnerability Management Policies and Standards Engineer GRC Assessments ANSP Program FOCUS Ensure secure aircraft ground and communications systems relied upon for our ANSP Program with concentrated attention towards risk governance vulnerability management policies and standards RESPONSIBILITIES Develop and implement security policies and standards ensuring compliance with industry regulations and best practices Conduct risk assessments and vulnerability assessments to identify1 and mitigate security risks Manage the vulnerability management program including vulnerability scanning penetration testing and remediation Develop and deliver security awareness training programs Collaborate with stakeholders to integrate security considerations into the design and development of new aviation systems Stay informed about emerging threats and vulnerabilities in the aviation industry SKILLS Cybersecurity Risk Governance Expertise Requires 35 years of progressive cybersecurity engineering experience with a deep understanding of risk management frameworks NIST SP 80037 ISO 27005 governance principles vulnerability management and security policy development Risk Assessment Mitigation Proven experience conducting risk assessments NIST 80030 NIST CSF identifying vulnerabilities analyzing threats and developing effective mitigation strategies Vulnerability Management Program Expertise Expertise in vulnerability management tools and processes including vulnerability scanning penetration testing coordination vulnerability prioritization and remediation tracking Policy Standard Development Implementation Strong ability to develop document and implement security policies standards and procedures that align with industry best practices regulatory requirements and risk tolerance Communication Stakeholder Collaboration Excellent communication written and verbal and interpersonal skills to effectively communicate security risks governance strategies and policy recommendations to diverse stakeholders including technical teams management and external partners PREFERRED CERTIFICATIONS CISSP Certified Information Systems Security Professional CISM Certified Information Security Manager CISA Certified Information Systems Auditor CRISC Certified in Risk and Information Systems Control CompTIA Security TOOLS AND TECHNOLOGIES Risk Management Frameworks eg NIST RMF NIST CSF ISO 27005 Risk Assessment Methodologies eg NIST 80030 Threat Modeling GRC Platforms eg ServiceNow GRC RSA Archer Vulnerability Management Tools eg Tenable Nessus Tanium Penetration Testing Understanding Familiarity with tools methodologies for report interpretation Policy Collaboration Tools eg SharePoint Microsoft Teams Policy Management Platforms Surrounding teamkey projects Develop and implement a Cybersecurity Risk Management Framework for ANSP Ground Systems Based on NIST RMF or ISO 27005 Establish and mature vulnerability management program for aircraft ground infrastructure Develop and deploy a suite of Security Policies and Standards for Aviation System Development Lifecycle SDLC Conduct a comprehensive Cybersecurity Risk Assessment of a Critical Aviation Ground Systems using NIST 80030 Develop and deliver targeted Security Awareness Training for Aviation Operations Personnel on a Specific Risk Area