Cybersecurity Specialist

Open Deal Exchange has a direct hire opportunity for a Cyber Security Specialist to join the team. This position will be part of a team responsible for Analysis and Response of Cybersecurity in a highly regulated and compliant environment. 



  • Develop procedures, and standard reports for identifying and/or verifying potential breach of information security, confidentiality and with validation and regression testing
  • Create and maintain information system audit artifacts as part of all System and Environment Audits
  • Create and maintain training plans for security awareness throughout the organization
  • Use tools to monitor and alert on potential security issues (IDS, IPS, scans, etc)
  • Provides support, as part of a team, in the following areas: Risk Assessments, Data Loss Prevention, User Access Reviews, Regulatory Compliance, Security Reporting Tracking & Tools, Vulnerability Scanning & Mitigation, eDiscovery and Forensics, Incident Response Coordination, Communications and Awareness

Job Requirements

  • Bachelor’s degree with relevant coursework in computer science or a related field
  • 3 years of related work experience within enterprise security of a highly regulated and compliant organization dealing with standards such as Payment Card Industry Data Security Standard (PCI-DSS) and/or NIST Cybersecurity Framework
  • CompTIA Security+ certification or equivalent required
  • Will accept any suitable combination of education, training, or experience

Desired Skills

  • Experience in compliance testing activities, documentation, self-assessment reporting, etc.
  • Experience in evaluating the alignment of processes and controls with policies, standards, guidelines, and best practices
  • Experience in Governance Risk and Compliance (GRC) solutions and processes
  • Experience with the NIST, PCI-DSS Cybersecurity Frameworks and CIS control framework
  • Keeps abreast of the relevant business developments and evolving IT risk areas, particularly those related to PCI-DSS
  • Experience with third party controls attestation reports (SOC 1 and SOC 2, CIS, HITRUST)
  • Knowledge of scanning tools and technology for finding potential vulnerabilities
  • Knowledge of best practices for security (BSIMM, OWASP, etc)
  • Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP Networks
  • Knowledge of network and web related protocols (eg, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
  • Understanding of the system hardening processes, tools, guidelines and benchmarks. Experience and technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security