Cybersecurity Assessment Facilitator
Location: Fairfax, Virginia
Job Type: Internship
About Us: Cybrbase, Inc is a cybersecurity for transportation company, focusing on increasing the cyber resilience of small and rural transit agencies using their NIST-based SaaS platform. Cybrbase is seeking a Cybersecurity Assessment Facilitator who has a background or interest in NIST-based cybersecurity assessments and/or cybersecurity in general. The applicant will receive hands on training and experience conducting assessments with transit agencies, be exposed to industry best practice frameworks for conducting risk assessments, and potential for full-time employment based on performance.
- Assist and facilitate cybersecurity assessments, security documentation review, and security controls evaluation.
- Collaborate with internal and external stakeholders to ensure assessments align with regulatory, compliance, and industry standards for NIST CSF 2.0.
- Support the creation and maintenance of risk registers and issue logs to track security risks and vulnerabilities.
- Participate in interviews with internal teams and external stakeholders to gather assessment data.
- Contribute to document findings, assessment results, and remediation recommendations.
- Identify any gaps that can be streamlined for agencies when completing the cybersecurity assessment.
- Assist in monitoring cybersecurity trends, threats, and best practices.
- Collaborate with the executive team to improve risk assessment methodologies, criteria, and tools.
- (Desired) Currently pursuing or recently completed a degree in Cybersecurity, Information Technology, Risk Management, or a related field.
- Basic understanding of cybersecurity principles, risk management, and compliance frameworks.
- Strong analytical and problem-solving skills with an interest in security assessments.
- Excellent written and verbal communication skills.
- Detail-oriented with strong organizational and documentation abilities.
- (Desired) Familiarity with cybersecurity tools, risk management platforms, or compliance frameworks is a plus.
- (Desired) Prior coursework or experience in security assessments, audits, or governance is a plus but not required.