Comprehensive IT GRC Management NIST-RMF

$25-50 USD / hour

Zaprt

Objavljeno

pred približno 2 mesecema

$25-50 USD / hour

We are looking for a GRC Specialist with expertise in NIST SP 800-37, SP 800-53, and NIST RMF. Responsibilities / Scope: Primary responsibilities include. • Prepare the RMF assessment guidelines for all levels of the IT organization for information security and information privacy risks. • Identify and categorize the Security Controls • Select (customize) the Controls for all the Control Families • Assist in Implementation – Train the control owners on implementing the controls. • Assess – Provide assessment on the implemented controls, document and review the findings with the IT leadership, and assess the risk posture. • Authorize – Develop the SAR for the internal stakeholders. • Monitor – Regularly monitor the changes in security posture, and help automate the process. Qualifications / Skills: • 5+ years of experience in performing GRC / NIST RMF assessments for regulated enterprises. • Direct hands-on current (within the last 3 years) experience. • Public sector (state and local gov) experience will be a huge plus. Location: • US-only Work: • The GRC Specialist will work in a team with active collaboration throughout the day. Duration & Commitment: • This is a long-term project (potentially multi-year) for continuous assessments and monitoring. • The time commitment could range between 20-40 hours a week. This could also turn into a contract to hire, if interested. The ideal candidate should have a demonstrable track record in IT GRC, experience in risk management and compliance in large organizations, and a deep understanding of IT policies and procedural development, auditing, and preparing reports.

System Administration

Web Security

ID projekta: 37866580

Več o projektu

7 ponudb

Projekt na daljavo

Aktivno pred 15 dnevi

Želite zaslužiti?

E-naslov

Prednosti oddajanja ponudb na Freelancerju

Nastavite svoj proračun in časovni okvir

Prejmite plačilo za svoje delo

Povzetek predloga

Registracija in oddajanje ponudb sta brezplačna

7 freelancerjev je oddalo ponudbo s povprečno vrednostjo $48 USD/uro za to delo

@ZohaibQ786

Hi, I can help you in conducting comprehensive IT GRC management following the NIST-RMF framework, leveraging my solid experience. Over the past five years, I've been performing GRC / NIST-RMF assessments primarily for regulated enterprises, and I'm confident in my ability to meet your project's scope and demands. Having worked on similar projects, I'm well-versed with preparing RMF assessment guidelines, categorizing security controls, selecting and customizing controls, implementation, assessment, authorization, and monitoring – all of which are in line with your needs. As a bonus, I've had prior experience in the public sector including state and local government entities - an aspect you mentioned would be a huge plus! Leveraging my knowledge about IT policies and procedural development along with my auditing ability seems like a valuable fit for your project. It's important to note that my previous work has also included regular risk assessments and monitoring – just as you require for this ongoing long-term project. Looking Forward ! Best Regards, Zohaib

$50 USD v 55 dneh

5,0

(2 ocen)

3,3

@irsolutions

I am a GRC Specialist with expertise in NIST SP 800-37, SP 800-53, and NIST RMF, with over 5 years of experience in performing GRC assessments for regulated enterprises. I have direct hands-on experience within the last 3 years and have worked with public sector organizations, making me an ideal candidate for this project. I have a demonstrable track record in IT GRC, risk management, and compliance, and a deep understanding of IT policies and procedural development. I invite you to review my profile for feedback and portfolio and start chatting with me to discuss the project in more detail.

$40 USD v 7 dneh