Senior Cybersecurity Consultant (LoD2 Assurance Lead)

Position Title:

Role Summary:

Responsible for leading and executing the Line of Defense (LoD) 2 cybersecurity assurance reviews, ensuring compliance with CIS benchmarks, internal policies, and enterprise standards. The consultant must demonstrate strong hands-on experience across infrastructure, databases, endpoints, and network security with reporting and audit readiness skills.

Key Responsibilities:

• Lead technical assurance reviews for OS, DB, applications, cloud, and endpoints.
• Review controls: hardening, patching, secure configs, access controls, logging, etc.
• Validate configurations against CIS Benchmarks and internal baselines.
• Perform access reviews and analyze system evidence across platforms.
• Create assurance reports with severity ratings, remediation, and evidence mapping.
• Coordinate walkthroughs and evidence sessions with infra and app teams.
• Provide ad-hoc support for remediation advisory.
• Execute scripts to gather system logs, configuration snapshots, AD reports
• Validate patch levels, account settings, group policies, and protocol configs
• Work closely with infra and DB admins to coordinate evidence sessions
• Populate findings and observations based on templates and checklists
• Support in data validation, backup policy reviews, and monitoring logs
• Support report preparation with screenshots and extracted outputs
  

Must-Have Skills:

• Deep knowledge of Windows Server, Linux (Red Hat), Active Directory
• Oracle DB, MS SQL Server, SOC/NOC controls
• Familiarity with CIS Benchmarks, NIST, ISO 27001
• Ability to write/execute scripts for validation (PowerShell, Bash, SQL queries)
• Risk-based thinking, report drafting, control categorization
• Admin knowledge in Windows, Linux, and database platforms
• Familiarity with tools like Nessus, Nmap, Wireshark, ADUC, SQL Developer
• Ability to interpret logs, group policies, endpoint hardening parameters
• Moderate scripting capability (PowerShell, Bash, basic SQL)
  

Preferred Certifications:

• CISSP

  (Certified Information Systems Security Professional)

• CISA

  (Certified Information Systems Auditor)

• CRISC

  ,

  ISO 27001 LA/LI

  (optional bonus)

• CIS Benchmarks Practitioner (via Linux Foundation)

• OSCP

  or technical certs are a plus

• CompTIA Security+

  or

  CySA+

• Microsoft Security Fundamentals

  or

  Azure Admin Associate

• RHCSA

  (Red Hat Certified SysAdmin) is a plus

• CIS Controls v8 Certificate (SANS/GIAC)

  bonus