October 24, 2007

Job Seekers

Looking for a career? You've come to the right place!

Information Security Consultant (QSA)

Location: New York, NY
Date Posted: 06-14-2019

Global information security consulting company is looking for an experienced Information Security Consultant with a deep passion and enthusiasm for InfoSec. Can you deliver exceptional technical and business leadership, pragmatic advice and in depth guidance directly to a wide range of customers? Do you enjoy, and can you effectively communicate strategy, effect technical and business changes and deliver impactful briefings to businesses? It is desirable to be qualified as a PCI DSS QSA, with experience within various information security standards and frameworks, e.g.
  • ISO/IEC 27001:2013;
  • HIPAA;
  • COBIT;
  • Department of Financial Services (DFS) 23 NYCRR 500;
  • Sarbanes-Oxley (SOX).

You should be able to analyze and assess technical solutions as well as present information and advice to senior business partners. You must have a good working understanding of secure networks, penetration testing, incident response as well as presenting risk management and mitigation. Experience of developing or implementing incident response programs and/or Security Operations Center (SOC) maturity assessments is key.
This is a high-profile client facing role, with a requirement for a significant amount of your time expected to be delivering on the client sites.

You will be involved in guiding and leading clients with a range of security work including cyber strategy, risk assessments, security assessment, secure network and system architecture design and awareness training. You will be able to lead others and be an authority on cyber security practices and principals. You will be able to shape and reason your arguments and explain the associated advantages and disadvantages of different approaches with clarity.

Consultancy must be delivered with the business objectives at the forefront of all recommendations for alignment and enhancement of current business operations, against the appropriate industry security standard.  Consequently, it is essential for the potential to possess and maintain good business focused thinking.
Assistance with pre sales and working with the wider teams is essential.

Essential Skills
  • Solid grasp of technical subjects around networks, servers, databases and software applications
  • Demonstrated thought leadership and the ability to influence, shape and guide security programs and business owners
  • Solid understanding of risk, threats and vulnerabilities
  • Ability to communicate clearly, with impact, to both technical and exec/board level staff
  • Excellent written and verbal communication skills
  • 5+ years’ experience within security disciplines
  • Previous experience in a client-facing consultancy role
  • Excellent time management skills

Deliverable Skills
  • 1+ years’ experience of conducting PCI DSS Assessments, Reports on Compliance (RoC) and Gap Analysis workshops
  • In depth experience of security architecture, design and configurations
  • Solid understanding of breach detection and SOC maturity processes/models
  • Experience and understanding of both offensive (testing) and defense  (monitoring & logging) security
  • Experience and understanding of HIPAA and HITRUST
  • Experience delivering security awareness training

Ideal Qualifications
  • PCI DSS QSA desirable, PA DSS QSA/P2PE QSA advantageous
  • For those without a QSA accreditation it is essential that you are in possession of one, or more, of the following qualifications:
  • (ISC)2 Certified Information System Security Professional (CISSP)
  • ISACA Certified Information Security Manager (CISM)
  • Certified ISO 27001 Lead Implementer
  • ISACA Certified Information Systems Auditor (CISA)
  • GIAC Systems and Network Auditor (GSNA)
  • Certified ISO 27001, Lead Auditor, Internal Auditor
  • IRCA ISMS Auditor or higher (e.g., Auditor/Lead Auditor, Principal Auditor)
  • IIA Certified Internal Auditor (CIA).
  • Eligibility for Security Clearance required

this job portal is powered by CATS