Home » Jobs

Current Job Opportunities:

Duffy Compliance Services (DCS) serves companies and organizations in the Mid-Atlantic area through security assessments and analysis. Our mission is to help organizations discover security concerns and the necessary response for their system’s unique environment.

We run our business and serve our clients based on the following core values:

  1. Reduce our client’s workload whenever possible
  2. Integrity and ethics
  3. Take ownership of our projects / solution
  4. Maintain accountability throughout our engagements
  5. Detail-oriented
  6. An easy-going attitude

Senior Penetration Testing Analyst

Job Description:

We are looking for Senior Penetration Testing Analyst for our growing business. They must work well independently, as well as within teams. We encourage our staff to take ownership for their projects, and they are empowered to see opportunities and recommend solutions. They must be ethical and dedicated to being on time and on task.

The projects are mostly turn-around projects and are typically renewed annually. This is an early-stage role so there is opportunity for growth.

You will be expected to perform the following tasks:

  • Perform initial client kick-off and closing debrief meetings
  • Perform network penetration tests
  • Perform web-application penetration tests
  • Perform wireless (Wi-Fi) site surveys and penetration tests
  • Perform internal and external vulnerability assessments
  • Participate as a security expert consultant in team projects and assignments
  • Assist with Digital Forensics investigations and Incident Response as needed.

Qualifications:

  • Must have strong knowledge of both commercial and open-source testing tools
  • Must have strong verbal and written communication skills
  • Must have solid organizational and multitasking skills
  • Must be dedicated to providing deliverables on time and on schedule
  • Must have an aptitude to provide deliverables on time and on schedule

Requirements:

  • An effective penetration testing methodology
  • Experience with network and web-application penetration testing
  • 5-10 years of Information Security experience or related field
  • Post COVID, occasionally be on-site and therefore required to have a valid driver’s license

Education and Certifications:

  • Bachelor’s degree or equivalent experience and training in penetration testing
  • OSCP, Master LPT, IACRB CEPT, or SANS GXPN certifications are a plus

Hire Type and Rate:

This role is flexible up to full-time work. Currently, this is part-time 1099 contracting work with the opportunity for future full-time, W2 employment.

We bill our clients and pay our staff based on firm-fixed pricing, which translates to approximately $70-$90/hour. Pay is negotiable based on experience and hours.

Location:

Location is mainly centered around the Baltimore/Washington, D.C. metro areas, with some clients located in Pennsylvania, Ohio, and Delaware.

Senior HIPAA Compliance Auditor

Job Description:

We are looking for Senior HIPAA Compliance Auditors for our growing business. They must work well independently, as well as within teams. We encourage our staff to take ownership for their projects, and they are empowered to see opportunities and recommend solutions. They must be ethical and dedicated to being on time and on task.

The projects are mostly turn-around projects and are typically renewed annually. These are early roles and have opportunity for growth.

Qualifications:

  • Must be familiar with NIST SP 800-66 Security Controls for HIPAA
  • Must be familiar with the HHS HIPAA regulation for both privacy and security
  • Must be familiar with HITECH Act and Omnibus Rule
  • Must have HIPAA auditing experience
  • Must have strong verbal and written communication skills
  • Must have some knowledge of network and information security
  • Must have solid organizational and multitasking skills
  • Must be dedicated to providing deliverables on time
  • Must have an aptitude to provide deliverables on time

Requirements:

Post-COVID, occasionally be on-site and therefore required to have a valid driver’s license

Education and Certifications:

Bachelor’s degree or working toward completing one

Hire Type and Rate:

This role is flexible up to full-time work. Currently, this is part-time, 1099 contracting work with the opportunity for future full-time, W2 employment.

We bill our clients and pay our staff based on firm-fixed pricing, which translates to approximately $70-$90/hour. Pay is negotiable based on experience and hours.

Location:

Location is mainly centered around the Baltimore/Washington, D.C. metro areas, with some clients located in Pennsylvania, Ohio, and Delaware.

Senior Compliance Auditor

Job Description:

We are looking for Senior Compliance Auditors for our growing business. They must work well independently within teams. We encourage our staff to take ownership for their projects, and they are empowered to see opportunities and recommend solutions. They must be ethical and dedicated to being on time and on task.

The projects are mostly turn-around projects and are typically renewed annually. These are early roles and have opportunity for growth.

Qualifications:

  • Must be familiar with NIST SP 800 Security Controls such as in FISMA, CUI, or HIPAA
  • Must have strong verbal and written communication skills
  • Must have experience in network and information security
  • Must have solid organizational and multitasking skills
  • Must be dedicated to providing deliverables on time
  • Must have an aptitude to provide deliverables on time
  • Some experience with network security and packet analysis

Requirements:

Must occasionally be on-site and therefore required to have a valid driver’s license

Not required, but ISACA CISA, SANS GSNA, or SANS GCCC a plus
Education and Certifications: Bachelor’s degree or working towards one in a related field (Computer Security)

Hire Type and Rate:

This role is flexible up to full-time work. Currently, this is 1099 contracting work with the opportunity for full-time, W2 employment.

We bill our clients and pay our staff based firm-fixed pricing. Pay is negotiable based on experience and hours.

Location:

Location is mainly centered around the Baltimore/Washington, D.C. metro areas, with some clients located in Pennsylvania, Ohio, and Delaware.

Duffy Compliance Services, LLC is an equal opportunity employer without discrimination based on race, ethnicity, color, national origin, gender, religion, age, sexual orientation, gender identity, veteran status, physical disability or any other personal characteristic protected by law.

Duffy Compliance Services, LLC is also a drug-free workplace.

Please provide us with some information about yourself below and attach your résumé.