Vacancy expired!
Job ID: 21-11081Title: Cyber Security Operations Center - Senior ConsultantLocation: Irvine, CAType: Direct PlacementJob Description:Cyber Security Operations Center Senior Consultant As a Cyber Security Operations Center (CSOC) Senior Consultant, you will have the opportunity to harness your experience and skills to fortify the security operations capabilities of not just one organization, but many, and in fields that truly matter such as healthcare, financial services, and others. Your impact will be broad as you enable your clients to identify, analyze, and respond to incidents efficiently, effectively, and with confidence.As an integral part of our client's growing cyber division, you will be able to shape the direction of our business and explore innovative approaches and technologies for managing risks. You will be empowered to make a true impact on our business, our clients, and the cybersecurity industry.The work you will perform for our clients
- Leverage your experience and knowledge of security monitoring, incident response, threat intelligence, threat hunting, vulnerability management, and/or security engineering to assist in the assessment and development of security operations capabilities across people, process, and technology
- Build presentations and other materials for client presentations and workshops, and support their delivery
- Identify and recommend technologies to support security operations, and work with technology partners to facilitate their implementation
- Develop and refine security operations policies, standards, guidelines, processes, plans, playbooks, runbooks, procedures, and other documents based on client needs
- Support the testing of security operations capabilities through the use of breach and attack simulation tools
- Develop and refine full lifecycle security operations use cases, from specifications of threats and data sources to analytic and automation routines
- Build reports and dashboards to monitor the efficiency and effectiveness of security operations
- Provide guidance and advice regarding the governance and management of security operations
- Monitor and report on progress in completing projects and deliverables
- Innovate on behalf of customers; translate your thoughts into action yielding measurable results
- Maintain awareness and understanding of evolving threats and intrusion trends to provide subject matter expertise and insight to clients about industry attack trends and defenses
- Maintain awareness of technologies that support security operations capabilities, and the relative strengths and weaknesses of those technologies
- Identify and attend training to keep skills and knowledge up to date
- Create methodologies, frameworks, and reference architectures to support sales and delivery of our professional services
- Build presales materials such as proposals and statements of work
- Support pre and post sales meetings and presentations with our clients
- Consistently deliver engagements against established schedules and budgets, coordinating with our team and delivery partners
- Help to build eminence materials and support their publication and delivery
- Identify opportunities to improve our internal processes and recommend changes
- Mentor and motivate team members to provide outstanding client service
- Help define and bring to market new offerings and capabilities
- Understand the scope of services provided by our cyber risk division and identify opportunities within our client base to deliver more services
- Bachelors degree in cybersecurity or other related discipline and 3+ years of cybersecurity experience
- Minimum of 2 years of experience in two or more of the following:
- Security monitoring
- Incident response and handling
- Threat intelligence
- Vulnerability management
- Threat hunting
- Security engineering
- Experience with SIEM/Log Management tools (e.g., Splunk, Sumo Logic, Exabeam, Elastic, Sentinel)
- Experience with one or more Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), or Software-as-a-Service (SaaS) providers such as Microsoft and Amazon Web Services
- One or more industry certifications, e.g., CISSP, GCIA, GOSI, GMON, GCDA, GSOC
- Strong oral and written communication skills
- Ability to gauge the audience and speak at appropriate levels
- Ability to put complex concepts in a clear and concise form
- Delivery of presentations to both small and large groups, and in virtual or in person settings
- Excellent time management skills
- Ability to set priorities and meet obligations in a timely manner
- Masters degree in cybersecurity or other related discipline
- 2+ years of experience as a cybersecurity consultant
- Deep understanding of network defense principles, common attack vectors, incident response methodologies, log analysis, and attacker techniques
- Experience with using MITRE Telecommunication&CK
- Experience with enterprise security products such as Endpoint Detection and Response (EDR) products, network intrusion detection/prevention systems (NIPS or NIDS), Security Orchestration, Automation, and Response (SOAR) products, and/or Breach and Attack Simulation (Client) products
- Experience performing security monitoring over cloud services (IaaS, PaaS, SaaS)
- Experience with security services of major cloud providers
- Ability to deliver multiple projects at a time
- Scripting skills such as: PowerShell, Python, Node.js, JavaScript, Bash
- Two or more industry certifications, e.g., CISSP, GCIA, GOSI, GMON, GCDA, GSOC
Vacancy expired!