Cybersecurity Technical Assessor

Job Summary:

The Cybersecurity Technical Assessor is responsible for conducting in-depth technical assessments of client environments to identify cybersecurity risks, vulnerabilities, and areas for improvement. This role involves evaluating system configurations, network architecture, cloud deployments, and security controls against industry standards and best practices such as NIST CSF, CIS Controls, and ISO 27001. The assessor will produce clear, actionable reports and provide guidance to clients on improving their security posture. This role requires 60% travel and must be based in either Texas or Colorado.

Key Responsibilities: 

·        Perform hands-on cybersecurity assessments for election infrastructure at counties, cities, and states. 

·        Evaluate the effectiveness of technical controls related to identity and access management, endpoint protection, patch management, secure configuration, network segmentation, data protection, and incident response. 

·        Assess compliance against cybersecurity frameworks and standards (e.g., NIST CSF, CIS Controls, CMMC, HIPAA, CJIS, etc.). 

·        Conduct interviews with client personnel and review documentation to understand policies, procedures, and control implementation. 

·        Prepare detailed assessment reports, including risk findings, maturity ratings, and prioritized recommendations. 

·        Present findings and recommendations to client stakeholders, both technical and executive. 

·        Support the development and continual improvement of assessment methodologies, tools, and templates. 

·        Collaborate with other consultants, engineers, and project managers to deliver high-quality services. 

·        Stay current with emerging threats, technologies, and cybersecurity trends. 

Qualifications: 

·        Required: 

·        0 - 3 years of experience in cybersecurity. 

·        Understanding of security controls in IT environments, including operating systems, network infrastructure, cloud services, and identity systems. 

·        Familiarity with frameworks such as NIST CSF, CIS Controls, ISO 27001, or CMMC. 

·        Ability to review and assess technical configurations and documentation, such as firewall rules, GPOs, system hardening baselines, or logging setups. 

·        Strong written communication skills and the ability to deliver client-ready reports. 

·        Experience working with clients in a consulting capacity. 

·        Preferred: 

·        One or more relevant certifications such as security+ or other. 

·        Understanding of Microsoft 365 and Azure. 

·        Exposure to security tools such as vulnerability scanners, SIEMs, EDR platforms, or configuration analyzers. 

·        Experience supporting public sector clients or regulated industries. 

Soft Skills: 

·        Professional demeanor and strong interpersonal skills. 

·        Ability to explain technical findings in plain language for non-technical audiences. 

·        Highly organized with strong attention to detail. 

·        Comfortable managing multiple client engagements simultaneously. 

Education/Certifications:

Non required but preference will be given to those working towards related certifications

Behaviours/Values:

• We have created a fantastic corporate culture – our values drive our behaviours. Here’s the expectations:  
• Act with integrity and communicate honestly and openly.  
• Passion for excellence and customer service  
• Must be a driven, self-motivated individual who is curious and eager to learn.  
• You take full accountability for all your actions and the results.