Job
Description
Working knowledge of cybersecurity industry best practices and guidance, including NIST Cybersecurity Framework, OWASP, CIS Critical Security Controls, ISO 27001/2. Understanding of TCP/IP protocol suite. (i.e. TCP, SMTP, DNS, HTTP, etc.) Experience in project management and the ability to clearly communicate security technology issues verbally on both a formal and informal basis to all levels of client staff. Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships. Ability to work additional or irregular hours based on client requirements. Experience with the secure configuration of various infrastructure platforms and devices such as Microsoft Windows, Unix / Linux, and common network devices (routers, switches, firewalls). Documentation of technical testing and assessment results in a formal report format. Excellent analytical and organization skills Ability to manage multiple client engagements and competing priorities in a rapidly growing, fast paced, interactive, results based team environment. Ability to work additional hours as needed and travel on a regular basis to clients as required. Experience with the secure configuration of various infrastructure platforms and devices such as Microsoft Windows, Unix / Linux, and common network devices (routers, switches, firewalls). Ability to work well independently or with a team. Experience troubleshooting common IT challenges. Experience with intrusion detection systems, firewalls, email/web content filtering, DLP, UBA/UEBA, VPN, and other common security technologies. Expertise in designing secure networks, systems and application architectures Disaster recovery, computer forensic tools, technologies and methods Planning, researching and developing security policies, standards and procedures System administration, supporting multiple platforms and applications Expertise with mobile code and malicious code Assessing, designing and implementing end-point security solutions and platforms. Hands-on working experience with relevant enterprise technology (E.g. CrowdStrike, Exabeam, Carbon Black, etc) Vulnerability assessments, network penetration tests, wireless security assessments, web application security assessments, and social engineering activities. Familiarity with threat and vulnerability management solutions Endpoint security solutions, including file integrity monitoring and data loss prevention AWS and cloud platform as a service (PaaS) security Knowledge of risk assessment tools, technologies and methods Support the management of engagements including planning, execution, and reporting. Develop and document engagement fieldwork, notes, communications, results and deliverables. Lead, train, and mentor other Cyber Risk team members on client engagements and develop cohesive and effective teams. Attend professional development and training sessions on a regular basis. Remain current and apply knowledge of cybersecurity trends and risks. Adhere to the highest degree of professional standards and strict client confidentiality. Support the performance of technical cybersecurity assessments, integrations, and incident response. Conduct cybersecurity control assessments in accordance with industry frameworks and leading practices. Bachelors and/or Master s degree in Information Technology, Computer Science or Cybersecurity related field. Experience with Hadoop, Elastic, Kibana, Syslog, Kafka, Perl, Python, MongoDB, MySQL, Cloud computing, etc. Preferred certifications - Certified Ethical Hacker (CeH v9 & above), CISSP, OSCP
