Cybersecurity Consulting Manager         JOB# JBD0063

 

 

Location:              Houston, TX

                              New York, NY

 

The IT Security Manager will be part of an IT Security team leading and supporting projects in the areas of security assessments, security infrastructure design and implementation, and PCI services.

The IT Security Manager will be responsible for:

  • Can act as primary contact for clients regarding all questions and information, including progress, challenges encountered, and issues identified

  • Recommends controls by identifying problems; writing improved procedures

  • Defines project requirements by identifying project milestones, phases, and elements; forming project team; establishing project budget

  • Monitors project progress by tracking activity; resolving problems; publishing progress reports; recommending actions

  • Manages the engagement and underlying economics to ensure engagement metrics are achieved

  • Maintains system protocols by writing and updating procedures

  • Maintains user confidence and protects operations by keeping information confidential

  • Supports Managing Director, Security Service Line Leader, and Business Development Management team during prospective client meetings and proposals

  • Conducts Penetration Tests and Vulnerability Assessments using automated and manual tactics, techniques, and procedures

 

Supervisory Responsibilities:

  • Supervises the day-to-day workload of staff on assigned engagements and reviews work product

  • Ensures staff is trained on all relevant software

  • Evaluates the performance of staff and assists in the development of goals and objectives to enhance professional development

  • Delivers periodic performance feedback and completes performance evaluations for staff in accordance with Firm guidance

 

Qualifications

  • Bachelor’s degree in a relevant discipline required

  • Professional certifications such as QSA, ASV, CISSP, CEH, CPT, OSCP, OSCE, and CISM preferred

  • Eight (8) or more years of professional experience required

  • Experience performing IT Security Assessments, including static, dynamic, and manual assessments preferred

  • Experience leading and managing teams of security consultants preferred

Software

  • Must be able to use at least two of the following proficiently and instruct others on them: Nessus, Burp, Metasploit Framework/Pro, and the Social Engineering Toolkit; or have strong experience with PCI

  • Must have solid working experience and knowledge of Windows and Unix/Linux operating system

  • Familiarity of Network and System architecture analysis required. Fundamentals of network routing & switching and assessing network device configurations required

  • Scripting (Windows/*nix), Bash, Python, Perl, or Ruby is strongly preferred

  • Strong familiarity with OWASP top 10, PTES and NSA Vulnerability and Penetration Testing Standards required

  • Experience with PCI DSS, HITRUST, ISO 27001/2 preferred

 

Other Knowledge, Skills & Abilities

  • A strong understanding of web, mobile, and thick client Application Security, static and dynamic testing, and Secure SDLCs

  • A working understanding of application layer vulnerabilities, and the business impact associated with those vulnerabilities

  • Have an understanding of how to create unique exploit code, bypass AV and mimic adversarial threats

  • A strong desire to be a part of and grow a nationwide, elite IT Security team

  • Strong written and oral communication skills

  • Ability to work in a fast-paced, high-growth environment with multiple high-priorities

  • Ability to travel 25% to perhaps as much as 50% of the time, as needed

  • Consultants work from their local office when not visiting client locations

 

 

To Apply, forward resume to: Norris@FlexSR.COM

Attn JOB# JBD0063 IT Cybersecurity Consulting Manager