Security Risk Assessment & Penetration Testing Lead

DataStaff, Inc. is in need of a Technical Security Risk Assessment & Penetration Testing Lead Consultant for a long-term contract opportunity with one of our direct clients in Raleigh, NC*This position is hybrid *LOCAL CANDIDTAES ONLY*Job Description:The Security Office is launching a large-scale cybersecurity initiative involving technical security risk assessments and penetration testing across 100 counties. This initiative covers county IT infrastructure, including servers, desktops, networks, firewalls, user access provisioning, MFA, VPNs, security hardening procedures, vulnerability management, and patch management processes.Responsibilities:Develop the assessment strategy, manage the technical risk assessment team, and ensure consistent, high-quality execution across all counties.Designing and conducting technical security assessments, performing penetration testing activities, creating standardized methodologies and templates, and managing the assessment team’s assignments and project timelines.Provide clear, non-technical communication of complex security topics to business leaders, CMS and stakeholders.Required Skills:7 Years - Experience in cybersecurity risk assessments and penetration testing.5 Years - Lead and perform technical security risk assessments on county IT environments (servers, desktops, networks, firewalls, IAM, MFA, VPNs, security hardening procedures, vulnerability management, and patch management processes)7 Years - Conduct internal/external penetration testing, vulnerability identification, and exploit validation5 Years - Develop a repeatable assessment methodology, templates, testing procedures, and reporting formats for use across 100 counties.7 Years - Manage and coordinate assessment team workloads, assignments, schedules, and deliverables.7 Years - Create and maintain project plans, timelines, and progress reports.3 Years - Familiarity with NIST, CIS Controls, ISO 27001, and related frameworks.This position is available on a corp-to-corp basis or as a W2 position with a competitive benefits package. DataStaff, Inc. offers medical, dental and vision coverage options as well as paid vacation, sick and holiday leave. As many of our opportunities are long-term, we also have a 401k program available for employees after 6 months.