POSTED Oct 10

Cyber Strategy & Management Manager

JOB DESCRIPTION

As a Cyber Strategy & Management Manager, you will get the opportunity to grow and contribute to our clients’ business needs by applying a collection of information and cybersecurity capabilities, including security and privacy, strategy, governance, IT risk, security testing, technology implementation/operations, cybercrime and breach response for the Cybersecurity & Privacy Practice – all with the resources, environment, and support to help you excel.
From day one, you’ll be empowered by the greater Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently.

Your day-to-day may include:

Adhere to the highest degree of professional standards and strict client confidentiality
Execute assigned client engagements from start to finish, which includes the engagement planning, directing, and completion of IT security assessments and Information Security architectural design and deployments while managing those engagements to budget
Apply current knowledge of technology and cyber trends to identify security and risk management issues and other opportunities for improvement
Assist clients in planning and executing remediation plans identified in assessment activities
Work with the client to plan an engagement strategy, define objectives, and address technology-related controls risks and issues
Proactively interact with key client management to gather information, resolve problems, and make recommendations for improvements
Ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment
Participate in professional development activities and training sessions on a regular basis
Manage the team comprising of seniors and associates and maintain professionalism across the team
Other job duties as assigned

You have the following technical skills and qualifications:

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is required
Minimum 6 years of related cybersecurity experience in a similar consulting practice or function
CISSP, GIAC (e.g., GSEC, GCIH, GISP, etc.), cloud security (e.g., AZ-500, AWS Certified Security, Google Cloud Professional Architect / Security Engineer)or other related certifications required
Understanding of Industry Standards/frameworks such as COBIT, NIST, ISO 27001, and PCI-DSS etc. required
Demonstrate proven and extensive abilities solving complex cyber-risk management issues, including the following areas:
- Familiarity with common cyber event detection and threat and vulnerability management security solutions.
- Design and development of IT Risk and Cyber security programs using industry frameworks and methodologies
- Designing Kris and metrics to build risk reports for management
- Implementation and maintenance of enterprise-wide cyber risk governance frameworks
- Assessment of enterprise-wide business risks and cyber threats
- Development of detailed business risk scenarios and cyber threat models
- Design and implementation of cyber risk management controls
- Monitoring and reporting of cyber risks, threats, and vulnerabilities
- Development, implementation, and periodic testing of cyber resiliency plans
- Use of tools and technology to provide data analytics and business intelligence noncyber threats, risks, and vulnerabilities
- Advising clients on complying with regulatory requirements such as FFIEC, GLBA, NY Dissect. as well as industry frameworks such as NIST CSF, COBIT, COSO, and PCI
- Building and operationalizing complex IT risk management and cyber security programs for clients
- Reviewing security architecture deployments and assessing and/or implementing secure configurations for network and infrastructure components (including both on-premises and cloud environments).
- Assessing and/or implementing security solutions and controls across both on-premises and cloud network environments.
- Working knowledge of cybersecurity industry-leading practices and frameworks, such as NIST CSF, CRI Profile, CIS Controls, CIS Benchmarks, OWASP, MITRE.
Exceptional client service, communication, analytical, organizational, and project management skills
Ability to execute multiple engagements and manage competing priorities in a rapidly growing team environment
Can travel as needed

The base salary range for this position in Los Angeles, CA, Bellevue, WA, New York, NY only is between $155,500 – $233,300.

View all jobs posted by this company

Apply Now!

You don't have a resume loaded to the system, so this application won't include any resume attachment. If you don't have a resume to upload, you can use the cover letter area below and include a link to your resume if you prefer.

Resume

Cover letter

Dear Hiring Manager,
I am reaching out to express my sincere interest in securing a position within your esteemed organization. While my professional journey has not been confined to a specific industry, my versatility and dedication make me well-equipped to contribute effectively to diverse roles.
Having graduated from the IT Fundamentals program at NPower, a renowned nonprofit organization, I have gained a solid understanding of computer systems and networks. My commitment to building a robust IT skillset is underscored by the successful attainment of the CompTIA ITF+ certification. Currently, I am actively participating in a Google Cybersecurity Professional course through Coursera, enhancing my expertise in security practices. Concurrently, I am cultivating proficiency in Python programming, showcasing my unwavering drive to expand my knowledge and skillset continually.
Furthermore, I am excited to share that I will be embarking on Purdue University Northwest’s Cybersecurity Workforce Certification Training in digital forensics, commencing in January. This upcoming endeavor reflects my dedication to staying at the forefront of industry developments and acquiring specialized knowledge to further contribute to the field.
In addition to my technical aptitude, I am a quick learner and a dedicated professional. My enthusiasm for exploring the vast landscape of information technology propels my desire to make meaningful contributions to any team or organization.
Thank you for considering my application. I am eager to discuss how my diverse skills, eagerness to learn, and upcoming certification can be valuable assets in a general employment capacity within your organization.
Sincerely,
Amber Avila

Cover letter

Greetings Hiring Team,
 
I am often brought in to fix a critical information security project that is at risk of missing the deadline.
I bring the ability to navigate the people and politics and lead a team to bring a technical compliance project to successful completion under budget and ahead of schedule.
My PCI-SSS project in 2019 involved a data center migration and avoided the loss of millions in credit card processing fees due to compliance with the payment card industry standards.
My HITRUST project in 2020 helped a large hospital meet federal HIPAA requirements and avoid an OCR investigation with 40% fewer gaps than before.
 
My qualifications include:

5+ years performing audits across multiple risk management frameworks.
Collaboration with subject matter experts from all involved departments including compliance, cloud infrastructure engineering, development, legal, cybersecurity, and human resources while communicating with executive leadership in a non-technical fashion.
Prior to focusing on information security, I led the IT operations for surgical hospitals and managed multiple technical projects.

I am confident that I can help your organization implement information security controls and complete corrective action plans to reduce information and business risk.
 
Gary Holverson, CISM, HITRUST CCSFP
817-223-4769

Cover letter

Dear Hiring Manager:
Thank you for the opportunity to apply for this role at your company. After reviewing your job description, it is clear that you are looking for a candidate who is extremely familiar with the responsibilities associated with the role and can perform them confidently. Given these requirements, I am certain that I have the necessary skills to successfully do the job adeptly and perform above expectations. A few of the skills that I have obtained throughout my professional career that would help me in this role are communication, networking, and adaptability, as well as some technical skills that are listed in my resume. In addition, my past and current experience in IT related fields such as digital forensics and incident response would also allow me to be successful in a professional career with your company.
During my academic and professional careers, I have managed to accrue nearly 5 years of work experience in the cybersecurity and forensics fields. Throughout this work experience, I have grown in my ability to use analysis and reporting tools such as FTK, Encase, and Cellebrite. In my most recent position, I have learned the importance of communication with business partners and customers, and have been able to communicate effectively. In both my academic and professional life, I have been consistently praised as hard-working and team-oriented by my supervisors, professors, and peers, and I look forward to leveraging these skills into the Security role at your company. Please contact me at (412) 443-2728 or via email at conoveranna422@gmail.com at your earliest convenience. Thank you for your consideration, and I look forward to hearing from you soon.
Sincerely,
Anna Conover

Cover letter

View all jobs