Information Security Specialist

A

Aspis

Information Security Specialist

Kansas City, MO
Full Time
Paid
  • Responsibilities

    Aspis Consulting is hiring a full-time Information Security Specialist position to join our growing team. This position will be responsible for working on internal company projects as well as with clients of Aspis. You will be asked to support both our company and client information security needs. This is not a full-time remote position; c ** andidates must be able to work at the company's offices or client job site in the Kansas City, Missouri metropolitan area. Relocation assistance will not be provided.**

    Duties:

    • Lead and Mentor a Small Team: Oversee daily operations, assign tasks, and guide team members to meet project goals and deadlines.
    • Coordinate Access Reviews: Ensure compliance with user access review processes, track and report status updates, and collaborate with internal/external auditors.
    • Facilitate Cross-Functional Efforts: Work closely with other team leads to support contingency planning and information risk management activities.
    • Conduct Productive Meetings: Engage client and third-party stakeholders, presenting project progress, challenges, and solutions in a clear, concise manner.
    • Drive Continuous Improvement: Identify process gaps, propose improvements, and support the adoption of new tools or methods to enhance team efficiency.
    • Assist Other Teams on Project: Assist with documentation, testing, and reporting of A-123 Computer Controls for identified federal information systems; lead the Contingency Planning team when the primary lead is unavailable, supporting exercises, and maintaining documentation; provide occasional support to triage, filter, and assign vulnerability remediation tickets to the appropriate stakeholders, and track statuses.
    • Additional Duties as requested

    Qualifications:

    • Experience, Education & Certifications: Resume must demonstrate FISMA compliance and risk mitigation experience. A degree is not required however a combination of relevant experience such as IT controls assessments and audits and education is required. This is not an entry-level position, resumes should clearly demonstrate relevant experience that supports the duties and technical understanding required of the position. Candidates with a Bachelor's degree in IT, Cybersecurity, or a related field and information security audit or project management certifications (e.g., CISA and PMP) will be preferred.
    • Technical Understanding: Familiarity with cybersecurity best practices, compliance frameworks, or standards (e.g., NIST, FISMA) and comfort using ticketing/project management tools like JIRA or ServiceNow.
    • Background Investigation: Must be eligible to work as a contractor for the federal government and pass a public trust background investigation.
    • Personal Work Ethic: Integrity, accountability, assuming responsibility for the success of your projects. Adaptable and flexible; able to think quickly in stressful situations.
    • **Self-Starter & Adaptable: **Comfortable working independently while being open to direction and feedback. Aptitude and willingness to learn and show continuous engagement and learning of their position and duties.
    • Local to the Kansas City Metropolitan Area: Must be able to work at client's work site or at Aspis Consulting's work site in the Kansas City, Missouri area.
    • Leadership Experience: Passion for leading innovation, energizing and developing people, delivering outstanding results. Previous experience managing small to mid-sized technical teams or cybersecurity units, ideally within a government or highly regulated environment. Organizational skills to prioritize and plan work, multi-task, and meet schedules.
    • Strong Communication Skills: Proven ability to lead meetings, produce status reports, and coordinate with diverse stakeholder groups, including federal officials and auditors.
    • **Analytical & Detail-Oriented: **Analytical skills to resolve problems and think creatively, capable of reviewing and interpreting user access data, ensuring accuracy, and catching inconsistencies or security risks.

    About Us

    Aspis Consulting makes enterprise cybersecurity solutions and professional services accessible to all sizes of organizations from small to medium-sized businesses to large Fortune 500 enterprises; non-profits; and municipal, state, and federal government agencies. Aspis is a Certified HUBZone Small Business, Certified LGBTBE, and Certified Virginia Values Veterans company. Our Values are Integrity, Community, and Diversity. https://aspis.consulting

    We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or any other characteristic protected by law. We will consider for employment qualified applicants with criminal histories consistent with applicable law.