Edtech.com's Summary

MathWorks is hiring a Senior Security Assurance Engineer to assess compliance with NIST 800-171, NIST 800-53, and CMMC standards. This role requires conducting security audits, evaluating control effectiveness, working with cross-functional teams to improve security, and supporting external audits and certifications.

Highlights

Conduct audits of security controls based on NIST 800-171, NIST 800-53, and CMMC standards
Evaluate security measures and recommend improvements
Maintain compliance documentation and support lifecycle management
Develop and assist in security policy and procedure implementation
Deliver training on compliance requirements and best practices
Collaborate with IT, Engineering, HR, Legal, and other departments to address compliance gaps
Communicate audit findings and recommendations to stakeholders and management
Strong knowledge required of software development processes, cybersecurity, network and application security, risk management, and third-party management
Experience in security compliance auditing with NIST and CMMC frameworks
Bachelor's degree plus six years of relevant experience (or advanced degree equivalents); certifications like CISA, CISSP, or CMMC-AB Assessor preferred
Salary range: $118,400 - $183,600

Senior Security Assurance Engineer Full Description

Senior Security Assurance Engineer

Team: Software Process Engineering
Location: US-MA-Natick
Salary Range: $118,400 - $183,600

Job Summary

We are seeking a skilled Senior Security Assurance Engineer to join our dynamic team and assess compliance to NIST 800-171, NIST 800-53, and CMMC standards. This role involves evaluating our security controls, identifying areas of improvement, working with cross-functional teams to enhance our security posture, and participating in external audit and certifications.

Responsibilities

Conduct comprehensive audits of security controls in accordance with NIST 800-171, NIST 800-53, and CMMC guidelines.
Evaluate the effectiveness of security measures and identify areas for improvement.
Ensure ongoing compliance with federal and industry standards.
Develop and maintain documentation related to compliance activities and findings.
Provide recommendations for risk mitigation and control enhancements.
Assist in the development and implementation of security policies and procedures aligned with regulatory requirements.
Support the lifecycle management of compliance-related documentation.
Conduct training sessions to raise awareness about compliance requirements and best practices.
Stay updated on the latest developments in NIST and CMMC standards.
Work closely with cross-functional stakeholders across various departments such as IT, Engineering, HR, Legal to address compliance gaps.
Communicate audit results and recommendations to stakeholders and senior management.

Minimum Qualifications

A bachelor's degree and 6 years of professional work experience (or a master's degree and 3 years of professional work experience, or a PhD degree, or equivalent experience) is required.

Additional Qualifications

Strong knowledge of software development processes, on-prem and cloud-based infrastructure, cybersecurity, network security, risk management, application security, and third-party management.
Proven experience in security compliance auditing and cybersecurity frameworks, particularly with NIST 800-171, NIST 800-53, and CMMC.
Excellent analytical, problem-solving, and communication skills, with a demonstrated ability to collaborate across teams and roles.
Relevant certifications such as CISA, CISSP, or CMMC-AB Assessor are preferred.

Original Job Description

Senior Security Assurance Engineer

Team: Software Process Engineering
Location: US-MA-Natick
Salary Range: $118,400 - $183,600

Job Summary

Responsibilities

Conduct comprehensive audits of security controls in accordance with NIST 800-171, NIST 800-53, and CMMC guidelines.
Evaluate the effectiveness of security measures and identify areas for improvement.
Ensure ongoing compliance with federal and industry standards.
Develop and maintain documentation related to compliance activities and findings.
Provide recommendations for risk mitigation and control enhancements.
Assist in the development and implementation of security policies and procedures aligned with regulatory requirements.
Support the lifecycle management of compliance-related documentation.
Conduct training sessions to raise awareness about compliance requirements and best practices.
Stay updated on the latest developments in NIST and CMMC standards.
Work closely with cross-functional stakeholders across various departments such as IT, Engineering, HR, Legal to address compliance gaps.
Communicate audit results and recommendations to stakeholders and senior management.

Minimum Qualifications

A bachelor's degree and 6 years of professional work experience (or a master's degree and 3 years of professional work experience, or a PhD degree, or equivalent experience) is required.

Additional Qualifications

Strong knowledge of software development processes, on-prem and cloud-based infrastructure, cybersecurity, network security, risk management, application security, and third-party management.
Proven experience in security compliance auditing and cybersecurity frameworks, particularly with NIST 800-171, NIST 800-53, and CMMC.
Excellent analytical, problem-solving, and communication skills, with a demonstrated ability to collaborate across teams and roles.
Relevant certifications such as CISA, CISSP, or CMMC-AB Assessor are preferred.

Let me find your next job.

Thanks - you're signed up.

Senior Security Assurance Engineer

Edtech.com's Summary

Senior Security Assurance Engineer Full Description

Senior Security Assurance Engineer

IT Security Engineer I

Lead Offensive Security Engineer

Senior Cyber Threat Hunter

IT Security Risk Analyst II

Cyber Security Risk & Compliance Analyst