Talent.com
Cybersecurity Risk Assessment Consultant
Cybersecurity Risk Assessment ConsultantGDR Defense • Annapolis, MD, United States
Cybersecurity Risk Assessment Consultant

Cybersecurity Risk Assessment Consultant

GDR Defense • Annapolis, MD, United States
6 days ago
Job type
  • Full-time
  • Quick Apply
Job description

"Join GD Resources for dynamic opportunities in business management and IT, where innovation meets excellence."

About the Company :

GD Resources is a Veteran Women-Owned Business Management and Information Technology company committed to excellence. GD Resources provides dynamic opportunities for veterans and professionals alike to contribute to innovative projects and drive success in a collaborative and supportive environment. Join us to make a difference, advance your career, and grow with a company that values integrity, diversity, and continuous improvement.

Job Title : Cybersecurity Risk Assessment Consultant

Location : Hybrid (onsite work possibly at various locations throughout Maryland)

Rate : Competitive, DOE (W2 or 1099)

Position Overview

We are seeking a Cybersecurity GRC Data & Dashboard Consultant to support follow-on work from approximately 90 completed cybersecurity assessments for a client. The consultant will transform assessment results into structured data, dashboards, and reports that align with NIST CSF, CMMI maturity scoring, and the client's Governance, Risk, and Compliance (GRC) platform (e.g., ServiceNow GRC). This role is ideal for someone with strong cybersecurity domain knowledge, GRC platform experience, and hands-on skills in data analytics and dashboard development. The consultant will help build real-time, interactive views of client-wide and agency-level cybersecurity maturity, risks, issues, and remediation progress to support executive decision-making and continuous improvement.

Responsibilities

  • Convert all assessment results into a format compatible with the client's GRC platform import requirements.
  • Prepare and manage key data outputs, including assessment scope, maturity scores (CMMI 0 5 by NIST CSF function / category / control), findings, risks, issues, and recommended remediation actions.
  • Provide data files and reports in Client-specified formats and offer reasonable technical assistance to support successful import into the Client's GRC platform.
  • Incorporate agency issue response status data from the Client's GRC platform into reporting and analysis, as needed.
  • Design, develop, and maintain real-time reporting dashboards using cybersecurity assessment data at both client-wide (aggregated) and agency (disaggregated) levels.
  • Build dashboards that show :

Top control categories by maturity

  • Most common constraints
  • Top recommended areas of improvement
  • CMMI-based maturity levels (0 5) across Identify, Protect, Detect, Respond, and Recover
  • Top findings, risks, issues, and issue response by agency
  • Ensure all dashboards are interactive, allowing users to drill down into underlying assessment data behind summary metrics.
  • Implement robust filters in dashboards to support targeted analysis, including filters for : Executive Branch designation, enterprise agency, agency size tier, IT complexity tier, and overall Maturity Group.
  • Build agency-level dashboards that :

    • Display average maturity scores by NIST CSF area compared against client-wide averages using side-by-side bar charts

  • Show maturity averages by CSF categories (e.g., Communications, Maintenance, Access Control) compared to client-wide averages
  • Highlight recommended areas of improvement, top 10 findings, and percent completion of identified issues
  • Create comparison dashboards that allow users to select one or more agencies and compare ratings and metrics across NIST CSF areas and categories.
  • Integrate historical NIST CSF assessment data from prior years into dashboards to show year-over-year trends at both agency and client-wide levels.
  • Ensure all required data entry is completed before final project close-out unless an exception is approved by the client.
  • Provide reasonable technical assistance to support ongoing imports and integration into the Client's GRC platform.
  • Participate in weekly status meetings with client stakeholders.
  • Prepare concise written status updates on a bi-weekly basis and join additional meetings / discussions as needed.
  • Maintain and follow quality procedures, methodologies, and standards relevant to this contract, including those associated with Client platforms such as ServiceNow GRC.

    • Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Data Analytics, or related field (or equivalent experience).
  • 5+ years of experience in cybersecurity, GRC, or risk management roles supporting government or large enterprise environments.
  • Hands-on experience working with NIST Cybersecurity Framework (NIST CSF) and familiarity with NIST 800-53 and / or NIST 800-171 controls.
  • Experience with CMMI-style maturity scoring (0 5) and translating assessment results into structured data and reports.
  • Practical experience with Governance, Risk, and Compliance (GRC) platforms, preferably ServiceNow GRC or similar Client / enterprise platforms.
  • Strong skills in data analysis and dashboard / report development using tools such as Power BI, Tableau, or similar visualization platforms.
  • Proven ability to design interactive dashboards with drill-down and filter capabilities for different organizational tiers (e.g., client-wide vs. agency-level).
  • Experience integrating and analyzing historical assessment data to present trends and performance changes over time.
  • Strong attention to detail and ability to ensure data quality, consistency, and completeness prior to project close-out.
  • Excellent written and verbal communication skills, including experience preparing status reports and presenting findings to technical and non-technical stakeholders.
  • Demonstrated commitment to ongoing training and staying current with cybersecurity standards, tools, and assessment methodologies.
  • Ability to participate in weekly calls and other meetings during standard business hours and collaborate effectively with a remote, multi-organization team.

    • GDR is an Equal Opportunity Employer. We consider all qualified applicants without regard to race, color, religion, sex, gender identity, national origin, age, disability, veteran status, or any other protected status under applicable law. We are committed to equal opportunity in all aspects of employment, including hiring, promotion, compensation, and benefits.

    Create a job alert for this search

    Cybersecurity Consultant • Annapolis, MD, United States

    Related jobs
    Executive Consultant (VP level)

    Executive Consultant (VP level)

    Cytel • Annapolis, MD, United States
    Full-time
    Cytel's Strategic Consulting Practice partners with leadership teams at.Our multidisciplinary experts specialize in advanced trial designs, quantitative clinical pharmacology, and cutting-edge stat...Show more
    Last updated: 13 days ago • Promoted
    Supervisor, Risk Adjustment Auditing

    Supervisor, Risk Adjustment Auditing

    Datavant • Annapolis, MD, United States
    Full-time
    Datavant is a data platform company and the world's leader in health data exchange.Our vision is that every healthcare decision is powered by the right data, at the right time, in the right format....Show more
    Last updated: 19 days ago • Promoted
    Cyberspace Integration Lead - DoD Partnerships (TS / SCI)

    Cyberspace Integration Lead - DoD Partnerships (TS / SCI)

    Booz Allen Hamilton • Annapolis, MD, United States
    Full-time
    A leading defense technology company in Annapolis is seeking an Integration Partner Support SME.In this role, you'll support USCYBERCOM projects and engage with stakeholders on complex defense miss...Show more
    Last updated: 5 days ago • Promoted
    Senior Cybersecurity Engineer (Networking)

    Senior Cybersecurity Engineer (Networking)

    Amentum • Annapolis, MD, United States
    Full-time
    Amentum is a global leader in advanced engineering and innovative technology solutions, trusted by the United States and its allies to address their most significant and complex challenges in scien...Show more
    Last updated: 5 days ago • Promoted
    Manager Information Security & Risk Management

    Manager Information Security & Risk Management

    Highmark Health • Annapolis, MD, United States
    Full-time
    This job provides Information Security and Risk Management services for the Organization.Works with peers within security, HM Health Solutions customers and application teams to ensure alignment wi...Show more
    Last updated: 30+ days ago • Promoted
    Certified Peer Recovery Specialists (CPRS)

    Certified Peer Recovery Specialists (CPRS)

    PGIC • Middle River, MD, United States
    Full-time
    Position : Certified Peer Recovery Specialist (CPRS) Location : Baltimore, Maryland Organization : Positive Generation in Christ, Inc. Reports to : Clinical Director and CEO.About PGIC : PGIC is a non-pr...Show more
    Last updated: 16 days ago • Promoted
    Community Consultant

    Community Consultant

    AvalonBay Communities • Tilghman, MD, United States
    Full-time
    Creating a better way to live is the purpose that binds AvalonBay associates.At AvalonBay, every day is an opportunity to make a difference in someone's life. Whether it's helping someone choose one...Show more
    Last updated: 12 days ago • Promoted
    Information / Cybersecurity Engineer (Clearance Required)

    Information / Cybersecurity Engineer (Clearance Required)

    Nexxis Solutions • Annapolis, MD, United States
    Full-time
    We are looking for candidates to provide Cybersecurity expertise to systems and projects to ensure that the appropriate security features and safeguards are designed, integrated, and implemented fo...Show more
    Last updated: 5 days ago • Promoted
    Digital Network Exploitation Analyst (DNEA)

    Digital Network Exploitation Analyst (DNEA)

    Helm Point Solutions • Annapolis, MD, United States
    Full-time
    Digital Network Exploitation Analyst (DNEA).In this role, the Digital Network Exploitation Analyst (DNEA) will be working at the forefront of cyber network operations. You will help our client prepa...Show more
    Last updated: 30+ days ago • Promoted
    Senior Digital Account Director

    Senior Digital Account Director

    The Avalon Consulting Group Inc • Annapolis, MD, United States
    Full-time
    Do you love shaping digital strategies that move people, strengthen missions, and deliver meaningful fundraising and advocacy results? Avalon Consulting Group is seeking a.Senior Digital Account Di...Show more
    Last updated: 11 days ago • Promoted
    Director, Hyperscale Data Center Security Operations

    Director, Hyperscale Data Center Security Operations

    Oracle • Annapolis, MD, United States
    Full-time
    The physical security operations team is the primary interface with all clients and ensures.Oracle is now looking for a senior security professional to join our team. Oracle utilizes internal owned....Show more
    Last updated: 13 days ago • Promoted
    Cyber Compliance (Vulnerability Management Lead) - Assistant Director

    Cyber Compliance (Vulnerability Management Lead) - Assistant Director

    EY • Annapolis, MD, United States
    Full-time
    At EY, we're all in to shape your future with confidence.We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...Show more
    Last updated: 19 days ago • Promoted
    Risk Manager

    Risk Manager

    Coinbase • Annapolis, MD, United States
    Full-time
    Ready to be pushed beyond what you think you’re capable of?.At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, ...Show more
    Last updated: 19 days ago • Promoted
    Lead Cyber Engineer

    Lead Cyber Engineer

    Huntington Ingalls Industries • Annapolis, MD, United States
    Full-time
    Employment Type : Full Time / Salaried / Exempt.Anticipated Salary Range : $135,000.HII's Mission Technologies division.Warfare Systems comprises cyber and mission IT. electronic warfare; and C5ISR syste...Show more
    Last updated: 5 days ago • Promoted
    MT - System Director of Case Management - Bozeman

    MT - System Director of Case Management - Bozeman

    Generis Tek Inc • Bozman, MD, United States
    Full-time +1
    To discuss this amazing opportunity, reach out to our Talent Acquisition Specialist.Ritika Sharma at email address.System Director of Case Management. Please let me know if you or any of your friend...Show more
    Last updated: 16 days ago • Promoted
    Digital Network Exploitation Analyst, All Levels

    Digital Network Exploitation Analyst, All Levels

    Acclaim Technical Services • Annapolis, MD, United States
    Full-time
    Acclaim Technical Services, founded in 2000, is a leading language, operations, and technology services company supporting a wide range of U. We are an Employee Stock Ownership Plan (ESOP) company, ...Show more
    Last updated: 30+ days ago • Promoted
    Principal Project Management - Risk Management Analyst

    Principal Project Management - Risk Management Analyst

    Northrop Grumman • Annapolis, MD, United States
    Full-time
    RELOCATION ASSISTANCE : Relocation assistance may be available.At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the...Show more
    Last updated: 15 days ago • Promoted
    Manager of Cyber Defense Engineering

    Manager of Cyber Defense Engineering

    Lumen Inc • Annapolis, MD, United States
    Full-time
    We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly.Together, we are building a culture and company from the people up - committed to t...Show more
    Last updated: 14 days ago • Promoted