System Security Specialist

Position Overview

Creative Visions is seeking a System Security Specialist to support a statewide cybersecurity assessment initiative. This role provides expert-level cybersecurity analysis, advisory, and technical support across multiple State agencies, focusing on identifying risks, evaluating security controls, and strengthening overall security posture.

The ideal candidate brings deep experience across one or more cybersecurity domains and is comfortable operating in assessment, advisory, and technical review capacities.

Key Responsibilities

Cybersecurity Assessments & Analysis

• Conduct and support cybersecurity maturity assessments using frameworks such as NIST CSF, NIST 800-53, and NIST 800-171
• Evaluate system security controls and identify vulnerabilities, risks, and compliance gaps
• Analyze technical environments, architectures, and security implementations across agencies

Risk & Security Advisory

• Provide expert-level guidance and recommendations to improve system security posture
• Perform risk analysis and threat identification, including evaluation of system weaknesses and exposure points
• Support development of remediation strategies and POA&Ms (Plans of Action & Milestones)

Technical Review & Validation

• Review system configurations, architectures, and documentation for security accuracy and completeness
• Validate implementation of security controls across applications, networks, and infrastructure
• Ensure alignment with federal and state cybersecurity standards

Specialized Security Functions

• Contribute expertise in one or more of the following areas:
  • Penetration testing
  • Intrusion detection and monitoring
  • Cryptography and PKI
  • Authentication and access control
  • Network and system security architecture

Reporting & Documentation

• Document findings, risks, and recommendations in formal assessment reports
• Support development of executive briefings and closeout presentations
• Ensure deliverables meet quality, accuracy, and consistency standards

Collaboration & Stakeholder Engagement

• Work closely with auditors, analysts, engineers, and project leadership
• Interface with agency stakeholders and Information Security Officers (ISOs)
• Support coordination throughout the assessment lifecycle (kickoff, fieldwork, reporting)

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience)
• 7+ years of specialized experience in information, system, or network security
• Demonstrated expertise in one or more cybersecurity disciplines (e.g., penetration testing, risk analysis, IDS, PKI, etc.)
• Strong understanding of:
  • NIST cybersecurity frameworks and standards
  • Risk management and vulnerability assessment methodologies
• Excellent analytical and problem-solving skills

Preferred Qualifications

• Experience supporting federal or state cybersecurity programs
• Experience with cybersecurity assessments or audits
• Familiarity with ServiceNow GRC or similar platforms
• Knowledge of CMMI maturity scoring models
• Relevant certifications such as:
  • CISSP
  • CEH
  • Security+
  • CISM or CISA