Start date: ASAP
This is a 6 month contract opportunity with the possibility of converting into an FTE.
A Security Consultant is a client-focused position that works with the company's clients to develop a comprehensive security program. Our client's GRC Security Consultants’ responsibilities include planning, implementing, and monitoring various security control frameworks. The GRC Security Consultant will be part of a select group of industry-recognized experts and work on unique security solutions associated with next generation technologies and emerging security threats. Ongoing training and professional certifications are part of the job requirements.
Skillsets
Knowledgeable of industry standards such as NIST 800-53, NIST CSF, NIST 1800-23, DFARS and CMMC, NYS DFS, NYS Shield Act, HIPAA, NYS DOH OHIP SSP, NERC CIP, GDPR, PCI-DSS, CIS CSC.
Demonstrated standards assessment experience
General knowledge IT consulting, control implementation and optimizations, along with auditing security domains such as identity and access management, data encryption, application security, firewall auditing, vulnerability management and reporting, and asset management
Familiarity with vulnerability management programs, security architecture reviews, technical and physical security assessments
Experience developing security analysis documentation and recommended remediation actions
General knowledge of network topologies, security architectures, security solutions, tools, and IT Policies and standards
Experience with interfacing and presenting to C-level executives