Employer’s hire CVAMA’s to perform critical tasks which include:
Analyze enterprise cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
Maintain deployable cyber defense audit toolkit
Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents
Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions.
Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas
Conduct and/or support authorized penetration testing on enterprise network assets.
Conduct required reviews as appropriate within environment.