RISCPoint · 4 hours ago

Cybersecurity Operations Senior Consultant

United States

Full-time

Remote

Entry, Mid Level

2+ years exp

Maximize your interview chances

ComplianceCyber Security

Insider Connection @RISCPoint

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Advise RISCPoint clients regarding information security best practice and broader compliance programs in support of industry leading standards aligned with organizational security objectives

Advise and oversee client security operations, including Incident Response (IR), Business Continuity & Disaster Recovery (BCDR), security training, vulnerability analysis, and third-party risk management.

Conduct client workshops and walkthrough meetings to develop and implement enhanced operations across people, process, and technology controls to position client solutions for favorable evaluation and assessment.

Roadmap security programs tailored to client needs, assessing risks and rewards related to cybersecurity decisions, and providing regular updates and owning critical deliverables.

Collaborate on cloud architecture solutions across leading platforms such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).

Ensure compliance with relevant Cybersecurity Compliance Frameworks in public sector, private sector, and healthcare industries: such as ISO, NIST, and SOC.

Lead security training, exercises, and simulations for unified security initiatives.

Engineer internal Cyber Operations processes to enhance efficiency and effectiveness across multiple departments and teams within RISCPoint.

Coordinate with partnerships across audit firms, managed service providers, regulators and other third parties to drive business outcomes for our clients.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityCloud SolutionsCybersecurity Compliance FrameworksCOMPTIA Security+Incident Response (IR)Business Continuity & Disaster Recovery (BCDR)Vulnerability AnalysisAccess Management (IAM)Endpoint DetectionResponse (EDR)CISMCISSPCASP+AWS CertificationsAzure CertificationsClient Relationship Management

Required

2 – 4 years of successful industry experience in information security and technology.

Foundational network and security architecture knowledge.

Understanding of cloud solutions and security technology to support security domains across access control, encryption, identity and access management (IAM), endpoint detection and response (EDR), auditing and logging, and system development.

Exposure to modern Cybersecurity Compliance Frameworks: NIST: NIST 800-53, 800-61, 800-63, 800-171, etc.; Commercial: ISO, SOC; Healthcare: HIPAA, HITRUST; Public Sector: FedRAMP, CMMC.

COMPTIA Security+ (Sec+) or equivalent.

Effective management of client expectations, relationship, and trust.

Independent ownership of objectives, milestones, and deadlines for success.

Effective leadership and collaboration of internal and external project teams.

Clear and concise client-facing communication.

Success within a dynamic and adaptable environment dependent on unique client needs.

Driven inquisitive mindset and appetite for challenge.

Preferred

Active or pursued advanced security technical certifications and cloud security certifications are a plus: CISM, CISSP, CASP+, or equivalent; AWS Fundamental, Associate, or Professional-level certifications; Azure Fundamental, Associate, or Expert-level certifications.

Desire for continued education through certification and security conferences.