Cyber Security and Privacy Senior Associate – ServiceNow

Essential Duties and Responsibilities

  • Participating in the solution development process and ensuring that customer requests and needs are represented within the product
  • Designing and deployment of enterprise software solutions, including on-site implementations and cloud-based capabilities
  • Assisting with performing technical and competitive analysis of ServiceNow GRC, SecOps, Third Party and IT Asset Management solutions, including performance, debugging and other operational metrics.
  • Familiarity with risk standards and models is preferred.
  • Familiarity with Governance, Risk and Compliance platforms is preferred, especially ServiceNow
  • Familiarity with ServiceNow Performance Analytics is a plus
  • Familiarity with IT Asset Management solutions is a plus
  • Familiarity with risk reporting and dashboard solutions, including Business Intelligence platforms, is a plus
  • Ability to communicate difficult subject matter in a clear and concise fashion is important.
  • Ability to work with different delivery teams to support technology capabilities as part of larger projects is required.
  • Ability to consider non-traditional approaches to solve traditional security challenges is important.
  • Experience in offshore team- and capability-development is preferred.
  • Communicate (verbally and in writing) externally with clients and internally with all levels of the organization to successfully accomplish objectives portraying knowledge and confidence.
  • Motivate others to perform at maximum efficiency without sacrificing quality of the services delivered.
  • Maintain a good working relationship with clients and work effectively with client management and staff at all levels to gather information and perform services.
  • Work closely with Grant Thornton managers and partners to promptly identify and resolve client problems or issues.
  • Other duties as assigned

     Qualifications:

  • Bachelor’s degree in Computer Science, Information Systems, or related field.
  • 1+ years of related work experience in a similar consulting practice or function, servicing cross-industry clients at a national level.
  • Must have minimally 1 + years of related work experience with GRC platforms
  •  Must have, or be willing and able to obtain, one or more of the following certifications: CISSP
  • Demonstrated working knowledge of various standards and guidelines that are applicable to security practices such as ISO, NIST, COBIT and others.
  • Expert-level proficiency in Microsoft Office Suite, specifically Microsoft Word and Microsoft Power Point.
  • Must have excellent oral and written communication skills
  • Ability to think strategically
  • Ability to understand regulatory impacts to client strategies
  • Ability to travel on short notice and work additional hours as necessary.

Privacy and Data Protection Senior Associate

Essential Duties and Responsibilities

  • Adhere to the highest degree of professional standards and strict client confidentiality.
  • Ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
  • Ability to communicate in an organized and knowledgeable manner in written and verbal means – including delivering clear requests for information, developing responses to client requests, and communicating conflicts and risks.
  • Deep understanding of global privacy and data protection regulations, such as EU’s GDPR and US laws such as CCPA, CPRA, CDPA, CPA, HIPAA, GLBA.
  • Apply current knowledge of privacy and data protection trends and to issues and other opportunities for improvement.
  • Assist clients in planning and executing remediation plans identified in assessment activities.
  • Proactively interact with key client management to gather information, resolve problems and make recommendations for improvements.
  • Collaborate with team members at all levels in the development and marketing of the privacy service offering.
  • Develop high quality deliverables through collaboration with clients and team members to address needs and demonstrate an understanding of clients’ business.
  • Additional duties as assigned.

Qualifications 

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related field is required.  A Masters or JD degree is preferred.
  • 3+ years of related work experience in a similar consulting practice or function, servicing cross- industry clients at a national level.
  • Certification(s) Preferred: Obtained or demonstrates an active pursuit of one or more of the following certifications: Certified Information Privacy Professional (CIPP), Certified Information Privacy Technologist (CIPT), Information Systems Security Professional (CISSP), or other related certifications.
  • Experience working with leading privacy regulations to perform privacy assessments and support privacy program implementations.
  • Experience preparing reports and other deliverables that contain strategy, project, or technical analysis and findings in connection with consulting engagements and communicating those results to the team and client.
  • Knowledge of privacy technology solutions and experience implementing and sustaining tools such as OneTrust, WireWheel, Securiti.ai, BigID is a plus.
  • Experience in project management and the ability to clearly communicate privacy and data protection issues verbally on both a formal and informal basis to all levels of client staff.
  • Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
  • Demonstrates creative thinking and problem-solving skills, and advanced knowledge of MS Office Word, Excel, Visio, and PowerPoint.
  • Ability to work additional hours as needed and travel on a regular basis to clients as required.

IAM Senior Associate

Cyber Security Identity and Access Management (IAM) Senior Associate

As companies become increasingly dependent on information technology (IT) to conduct daily business activities, they need to secure and control their technology infrastructure. Our Cyber Security and Privacy practice addresses these security and control issues. Within the Cyber Security practice, our Digital Identity Services – Identity and Access Management (IAM) discipline offers an opportunity for you to leverage your security assessment and operational knowledge and experience to broaden your business and project management skills in a rewarding and challenging environment.

The Cyber Security Identity and Access Management Senior Associate is responsible for delivering a full range of services to clients across all phases of project and engagement management for multiple clients. Responsibilities include design, implementation, and management of clients’ identity and access management solutions; developing and supervising other  engagement staff; and assisting in assigned client management and practice development activities.

Your day-to-day may include:

  • Design and implement futuristic Identity and Access Management solutions aligned with client requirements.
  • Demonstrate knowledge and experience in the cloud environments (e.g., AWS, GCP, Azure) and developing Identity and Access Management solutions for and in the cloud.
  • Lead requirements gathering and analysis on client engagements.
  • Assist with proof of concepts (POC) and evaluation of solutions.
  • Communicate with clients and product vendors as a specialist.
  • Assist practice leadership in creating proposals, budgets, and workplans. Participate in other business development activities with existing and new clients.
  • Proactively interact with key client management to gather information, resolve problems, and make recommendations for improvements.
  • Develop relationships with clients with the intention to exceed client expectations.
  • Adhere to the highest degree of professional standards and strict client confidentiality.
  • Additional duties as assigned.

You have the following technical skills, qualifications, and abilities:

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is required.
  • Minimum of two years’ experience in developing, implementing, or architecting IAM solutions.
  • Minimum of one-year experience with installation, integration, and deployment of one of the following IAM or PAM products:  SailPoint, Saviynt, Okta, ForgeRock, or CyberArk in a client environment.
  • Familiarity in one or more of the following areas:
    • Single Sign-On, Identity Federation, Consumer Identity, and Multi-Factor Authentication
    • Identity Governance and Administration, User Provisioning, Access Certification, Identity Analytics, Role Based Access Control
    • Privileged Access Management (PAM)
  • Experience with Java, JavaScript, JSP/Servlets, Python, REST APIs and XML.
  • Ability to clearly communicate security technology issues verbally on both a formal and informal basis to all levels of client staff.
  • Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.