.jpeg)
Home / Careers
Career Opportunities
At Cyvergance.AI, we offer a diverse and exciting range of career opportunities for talented individuals seeking to make a meaningful impact in the ever-evolving field of cybersecurity and provide staffing services to employers looking to hire qualified, vetted, and trained cybersecurity candidates that come through our programs.
.jpeg)
#000001: GRC Internship (Remote)
Our next GRC Internship cohort begins on October 20, 2023 and is three-months in duration.
The deadline for applications is Wednesday, September 20th, 2023 with all prescreening/interviews conducted by October 1, 2023.
What does a GRC Analyst do?
The GRC Analyst oversees the company's information systems and staff, ensuring established policies and procedures are followed according to internal and external requirements and good practices. These tasks are part of maintaining the culture of GRC across all levels of business and technical operations. The role requires skills touching upon project management, IT risk assessment, and general industry standards and practices around data security and privacy. Assist with creating, reviewing, modifying, and maintaining existing practices and policies to reflect the company's operations and values within specific industry-standard frameworks (i.e. CMMC, CIS, ISO, NIST, et al). Work with internal groups (Product, Engineering, Infrastructure, Cloud, SOC, ST&E, Pentesting teams etc.) to meet and achieve current and future GRC-related goals and requirements. Review current internal information security controls and ensure adherence with company standards. Document, assess, and map known and unknown areas of applicable risk, then present remediative steps to lower or remove the risk, as appropriate. This is an unpaid learning opportunity. Please reference this FLSA fact sheet from the Department of Labor concerning any questions you have concerning unpaid internships. https://www.dol.gov/agencies/whd/fact-sheets/71-flsa-internships. Feel free to watch testimonial videos from our most recent Spring 2023 Interns that graduated on June 23, 2023. https://youtu.be/1tnQ95FUELw.
About this internship:
This GRC Internship is a non-technical three-month internship program that goes deep dive into NIST RMF, CIS, ISO 27001, CMMC and offers the ability for the intern to receive hands-on knowledge and application of gap analysis, risk assessments, policy and procedure development, and presentation skills with access to 20% off ISC2 and CompTIA industry exam vouchers.
This GRC Internship program is geared for those that have completed or are a current student or graduate of a degree or certificate program with an emphasis on cybersecurity fundamental concepts. If you have only completed a few TryHackMe or Hackthebox, a bug bounty, one month or three-month bootcamps, a few Coursera or Udemy courses, or your degree program with a college or university was in the area of IT, software development, or any non-cybersecurity focused fundamental curriculum, and you are interested in becoming a pentester, cloud engineer, network engineer, or SOC Analyst, then we recommend enrolling in our one-year core credentialing program to get the most value and here's why.
Ask us about our six-month or one-year cybersecurity credentialing programs which includes paid industry exam vouchers (e.g., Security +, CGRC, Pentest +, Splunk Foundations, Jumpcloud Core, AWS Cloud Practitioner), and instant enrollment into our six-month or one-year internship program that runs congruently starting on day one. Get access to career, resume guidance and mentorship for life! Learn on modernized technology with instantly tranferrable skills to enter the cybersecurity industry to become a SOC Analyst, Cloud Engineer, Network or Systems Administrator, Penetration Tester, Application Developer, DevSecOps, Mobile Phone, IoT, ICS security. Learn AI and ML as it pertains to these roles. Payment plans and partial scholarships available to those who qualify.
#000002: Security ISSO - Washington, DC (Hybrid)
Oversee and work with the IT Security Support team supporting Federal clients. Provide technical assistance in the designing and implementation of solutions for protecting the confidentiality, integrity, and availability of sensitive information. Provide technical support for overall IT systems including Security improvements, vulnerability assessments, risk assessments, network security, and more. Participate in the design of information system contingency plans that maintain appropriate levels of protection and meet time requirements for minimizing operations. Conduct security tests and audits. Participate in the management of accreditation of the Federal Client's systems evaluating and certifying the implementation of FISMA, the NIST security guidelines, and the Department plans, policies, and guidelines.
#000003: RMF and Portfolio Compliance Specialist - Arlington, VA (On-Site)
Provide IT compliance reporting and monitoring support. Support the Risk Management Framework (RMF) certification and accreditation of all Human Resource Management (HRM) IT systems. Manage, coordinate, and develop content for the monthly HRM IT Steering Committee and all associated Working Groups. Convey and enforce processes associated with the management and execution of the HRM Portfolio of IT systems. Coordinate with key stakeholders from various divisions to develop and deliver briefings to staff on projects, short- and long-range objectives, and business requirements related to information technology, emerging technologies, and the archival of various artifacts.
#000004: Cybersecurity Assessor - Washington, DC (On-Site)
Cybersecurity Assessor opportunities supporting the Treasury in DC. The role requires an active Top-Secret Clearance with a compensation range up to $140K. Responsibilities include supporting the annual FISMA audit, conducting assessments of the System Security Plan, and developing a Security Assessment Plan.
#000005: Application Security Engineer - Richardson, TX (Remote)
Application Security Engineer in Richardson, Texas, fully remote. This role is primarily focused on security administration for ERP applications such as Oracle HCM Cloud, PeopleSoft HCM, and Peoplesoft Financials. Under general direction, defines, implements, and maintains application security processes and objectives based on both user needs and a solid understanding of application security. Able to provide analysis of business and user needs, documentation of requirements, and translation into security solutions within the application. Must have a basic understanding of how security architecture supports Sarbanes-Oxley (SOX) audit requirements.
#000006: QA Tester with RSA Archer - US (Remote)
The QA Tester will play a crucial role in ensuring the quality of software solutions and facilitating User Acceptance Testing for eGRC projects. The position requires a detail-oriented, proactive individual with excellent communication and troubleshooting skills. Experience with RSA Archer Smart Suite Framework and Agile Scrum is preferred. A bachelor's degree or equivalent work experience (5-7 years as a QA tester) is desirable.
#000007: PKI Lead Position - Fort Belvoir, VA (On-Site)
Lead who can interpret Senior Leader Directions and act on them independently through to the completion of the Task. This Employee needs to be able to chair IPTs, CFTs, and Summits attended by Senior Leaders or their representatives. They need to conduct themselves and communicate at a level commensurate with the audience and be able to maintain order and focus on a large group setting. Experience leading PKI (Public Key Infrastructure), ICAM (Identity, Credentialing, and Access Management) for Enterprise Scale organizations. This includes the setup and establishment of Certificate Authorities, Active Directory, and personal certificate issuance.
#000008: HR Investigations/Internal Audit Contractor - US (Remote)
HR Investigations/Internal Audit Contractor equires a candidate fluent in Spanish, responsible for leading interviews, document review, and open-source research for investigation work. They will write reports and manage investigative tasks as needed. Preferred qualifications include a minimum of three years of recent work experience, a bachelor's degree, and prior experience in misconduct, fraud, compliance, loss prevention, and security investigations. Knowledge of Mexican slang/jargon, cultural norms, and regulations is essential due to prior experience living or working in Mexico or Central America supporting the Mexico business unit.
#000009: IT Digital & Operating Model Strategist - US (Remote)
This contractor role involves assisting clients with developing IT digital and operating model strategies, translating ambiguous IT challenges into actionable insights, and supporting clients through complex IT transformations. The consultant will provide thought leadership on disruptive technologies, digital, mobile, agile delivery, and architecture. Additionally, they will manage client deliverables, engage with executives, and contribute to proposal development. Qualifications include at least three years of consulting or industry experience, a bachelor's degree (master's preferred), strong analytical and communication skills, and the ability to work in complex environments. Applicants must be authorized to work in the United States without visa sponsorship.
#000010: Customer Experience Management (CEM) Contractor - Texas, US (Remote)
Supporting client engagements in customer experience management (CEM) for customer-facing products and services. The contractor will serve as a key team member in client projects, supervising staff-level engagement teams and reviewing their work product. Qualifications include a minimum of three years of management consulting and/or corporate experience in customer strategy and transformation, a bachelor's degree (advanced degree preferred), and expertise in CEM, including sales and marketing strategy, customer profitability analysis, retention, cross-sell programs, and more. Strong communication and facilitation skills are essential.