Vacancy expired!
- A Cyber Risk and Controls Associate or Senior Associate is primarily responsible for the execution of various engagement security-focused objectives within assigned areas. This includes performing security risk and controls assessments, facilitating meetings with clients, and independently conducting testing against criteria. The ideal team member will also have strong written and verbal communication skills including the ability to participate inaccurate and timely project reporting and clearly articulate security issues to the client stakeholder (often non-IT) and internal team members.
- The ideal candidate would have a solid foundational understanding of technology risks within IT operations and how associated Cybersecurity risks could impact an organization. The candidate would need to be comfortable identifying and assessing new and emerging technologies.
- The candidate would have a foundational understanding of the modern cloud stack including, but not limited to bare metal, virtual machines, server, container orchestration, and segmentation.
- The candidate will be required to understand a variety of compliance requirements and security controls that can protect organizations and align with strategic objectives of the organization.
- Bachelor's degree in Management/Business Information Systems, Computer Science, Cybersecurity or related field
- 1-3 years of experience in cybersecurity, preferably in a consulting role
- Ability to conduct process walkthroughs independently with client personnel of diverse levels
- Ability to think critically and discern and derive information from a variety of sources
- Ability to communicate security issues accurately and concisely for a variety of audiences
- Ability to quickly understand emerging technologies and discern the implications to the control environment
- Experience writing full and thorough reports based on procedures performed and findings
- Experience and familiarity with one or more security frameworks and standards(NIST CSF, PCI DSS, CIS Controls, etc.)
- Up-to-date knowledge of security issues and technologies
- Master's degree or further education in information systems or cybersecurity is preferred
- CISSP ,PCIP, GSEC, CCSP, CISM, Security+ and/or related certifications are preferred
- Cloud Service Provider Architect certification(e.g. Amazon Web Services, Google Cloud Platform, IBM Cloud, Microsoft Azure)is a plus
Vacancy expired!