Consulting CISO

Job Title: Security Consultant

Job Summary:

We are seeking a seasoned Security Consultant to join our team. As a key member of our security practice, you will deliver high-quality security consulting engagements to our clients, assisting them in planning, developing, and improving their security programs.

Key Responsibilities:

• Provide expert guidance to clients seeking to enhance their information security efforts
• Serve as a subject matter expert in security programs, frameworks, and best practices, technologies, controls, staffing, and risk management
• Support client security teams through consultative guidance
• Develop, maintain, and update security documentation, policies, processes, and controls
• Perform presales scoping work for consulting engagements
• Promote our security practice, services, and products through marketing and promotional activities, including speaking, writing blogs, creating videos, and whitepapers

Requirements:

• Bachelor's Degree or Equivalent
• Minimum 8 years' experience in consulting, sales engineering, or security officer work with outside clients or end users
• 10 years minimum experience working in a technical capacity with networking, information security solutions, and enterprise IT
• 3-5 years in an information security officer or equivalent role

Preferred Qualifications:

• Extensive knowledge of fundamental security frameworks (ISO27000, NIST Cybersecurity Framework, NIST Privacy Framework, NIST 800-171, NIST 800-53, CIS Controls, CSA CCM)
• Familiarity with regulatory compliance requirements (PCI-DSS, HIPAA/HITECH/HITRUST, SOC, DOD CMMC, GDPR, US State privacy guidelines, PIPEDA, CCSC Baseline)
• Demonstrable familiarity with risk management practices and foundational risk management frameworks (NIST RMF, FAIR, OCTAVE)
• Ability to drive action to achieve results with minimal direction
• Strong analytical, organizational, and time management skills
• Comfort with C-level and executive conversations dealing with a wide range of information security and risk topics
• Ability to coordinate and be flexible with a cross-functional team
• Stellar writing skills, with keen attention to detail, grammar, and formatting
• High drive for continuous learning and research
• Strong communication (written and verbal) and issue resolution skills
• Microsoft Project, Excel, Word, and Power Point experience
• One or more of the following certifications: CISSP, CISA, CISM, CRISC, GSLC, GSTRT

Supervisory Responsibilities: None