Principal Information Security Consultant - Remote - (Washington DC/Metro Area) - Mandiant Westminster, MD Bookmark Share Print 305 0 1

Listing Description

Job Description

Mandiant Security Consulting Services ensures the long-term success of our clients by providing talented, passionate, and specialized security expertise. Our Consultants partner with clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Mandiant Incident Response, Intelligence and Managed Defense practices, we are able to develop defense forward information security programs for our clients.

As a Principal Information Security Consultant, you will lead teams and projects and will be responsible for helping our clients assess, design and build effective security programs. As an established trusted advisor, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security posture. This is an opportunity for you to showcase your strong communication skills and experience in security governance, security risk management, security operations, security architecture, and/or cyber incident response programs.

What You Will Do:

• Lead client-facing projects while mentoring/training junior team members
• Provide guidance on building and/or maturing information security programs and the implementation of tools and technologies used for enterprise security
• Evaluate client needs for security programs, coordinate design towards risk mitigated solutions, and clearly communicate the importance of complex and highly technical subjects
• Experience with cyber security incident response
• Implement and/or assess existing security controls
• Strong knowledge of tools and technologies used for enterprise security
• Polished presentation skills, to include capabilities at technical, executive, and board levels
• Interface with clients to address concerns, issues or escalations; track and drive to closure any issues that impact the service and its value to clients

• Minimum five (5) years of experience leading or managing technical teams
• 8+ years of information security, security program, security operations, or similar experience
• Ability to assess information security programs while providing guidance for maturing organizations cyber security stature. 
• Evaluate client needs, coordinate design for solutions, and clearly communicate the value proposition of complex and highly technical subjects
• Experience with and understanding of tools used for enterprise security, such as incident response, security event analysis, penetration testing, computer forensics, network and endpoint architecture, malware analysis or other areas of security operations
• Experience working with security frameworks, such as ISO 27001, NIST 800-53, HIPAA/HITECH, or PCI DSS Fundamental understanding of networking, including TCP/IP protocols and network topology
• Experience with operating systems, including Windows, Linux, and OSX
• Experience with security controls for common platforms and devices, including Windows, Linux, OSX and network equipment
• 3+ year’s experience with the components that comprise a successful information security program
• Must be eligible to work in the U.S. without sponsorship
• Top Secret clearance required; SCI preferred

Additional Qualifications:

• Ability to manage multiple projects and manage tight deadlines
• Prior training and public speaking engagement experience
• Ability to travel up to 20%
• Ability to successfully interface with clients (internal and external)
• Ability to prepare and review customized contracts for security consulting services
• Ability to document and explain technical details in a concise, understandable manner
• Ability to manage and balance own time among multiple tasks, and lead junior staff when required
• Experience with architecture development and configuration of Active Directory and Cloud environments.

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position is covered under Mandiant’s COVID-19 Vaccination Policy and therefore proof of vaccination against COVID-19 will be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is a regionally-based role that must be located within the Washington DC/Metro region of the U.S.