Our ideal candidate is a self-starter who can work independently, prioritize work based on the impact to the business, and manage multiple efforts simultaneously. The candidate will possess a broad knowledge of modern technology and security best practices, outstanding analytical skills, attention to detail, and discipline to ensure consistency and accuracy. Excellent verbal and written communication skills are critical to build and maintain relationships with stakeholders.
- Manage security risk and vulnerability remediation and support internal and external audit activities.
- Lead the resolution of identified information security and data risk issues.
- Develop and maintain an asset inventory.
- Proactively evaluate proposed changes to target environments to ensure they are implemented or isolated appropriately to avoid or mitigate risks.
- Assist in the development, maintenance and automation of security, risk, and compliance artifacts and documentation, including all exceptions and alternative controls implemented to address non-standard use cases.
- Manage the data, technology, and automation platform to drive key risk and performance reporting and insights.
- Support engineering and IT requests related to security and compliance impacting changes within the target environments.
- Keep customers and stakeholders informed of the status, blockers, and completion of changes.
- Stay informed of industry changes, trends, and best practices related to information security.
- Lead in the testing and design of technology controls.
- Lead the initiative to provide continuous analysis and monitoring of implemented controls.
- Serve as interpreter and liaison between lab managers and technology / security product owners to implement required solutions within the target environments.
- Collaborate with technology and security product owners to address the constantly evolving landscape of our lab environments.
- Bachelor of Science in an engineering/technology field with 6+ years of overall information security experience.
- Strong documentation and interpersonal skills.
- Organized self-starter with the ability to effectively meet deadlines.
- Broad knowledge of infrastructure, networking, security, and endpoint technologies.
- Ability to interpret vulnerability scans and work with IT and engineering teams to implement timely resolutions.
- Experience with secure configuration management across multiple platforms (Linux/Unix, Windows, Mac, VMware, Azure, AWS).
- General understanding of security standards and frameworks (NIST 800-53, NIST 800-171/172, CMMC, RMF).
- Solid understanding of security best practices and defense in depth strategies.
- Usable understanding of Python or other scripting languages.
- Solid understanding of information security risk management strategies.
- U.S. Citizen and ability to attain US Government Secret Clearance.
- Information security industry recognized certification(s): (CISSP, CRISC, CISA)
- Experience developing or automating operational processes using a modern language or orchestration platform
- Experience securing applications and services in cloud and hybrid cloud environments
If the Federal Executive Order for Government Contractors becomes effective, this role may require vaccination. In such instance, absent an approved accommodation based on a religious or medical reason, employees in this role will be required to be fully vaccinated no later than applicable deadlines, which are unknown at this point. Viasat will strive to give individuals as much notice as practicable if a vaccine mandate becomes applicable to this role.