Job DescriptionAs a Cyber Strategy & Management Manager, you will get the opportunity to grow and contribute to our clients' business needs by applying a collection of information and cybersecurity capabilities, including security and privacy, strategy, governance, IT risk, security testing, technology implementation/operations, cybercrime and breach response for the Cybersecurity & Privacy Practice - all with the resources, environment, and support to help you excel.
From day one, you'll be empowered by the greater Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently.
Your day-to-day may include:- Manage, lead, and perform cybersecurity assessments consisting of cybersecurity capability assessments, cyber threat and risk assessments, network and security architecture reviews, compliance and regulatory assessments, and system configuration reviews.
- Support evaluating and establishing organizational cybersecurity strategies and cybersecurity programs.
- Develop strategic recommendations and consultative guidance to clients to help mature their cybersecurity programs, technology, processes and capabilities.
- Manage assigned client engagements from start to finish, which includes engagement planning, fieldwork execution and reporting.
- Remain current and apply knowledge of cybersecurity trends and risks.
- Communicate and collaborate externally with clients and internally with all levels of the organization to successfully accomplish objectives portraying knowledge and confidence.
- Proactively interact with key client management to gather information, resolve problems, and make recommendations for improvements.
- Develop and manage client relationships with the intention to exceed client expectations.
- Adhere to the highest degree of professional standards and strict client confidentiality.
- Participate in professional development activities and training sessions on regular basis.
- Other duties as assigned.
You have the following technical skills and qualifications:- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field is required
- Minimum 5 years of related cybersecurity experience in a similar consulting practice or function
- CISSP, CISM, GIAC (e.g., GSEC, GCIH, GISP, etc.), cloud security (e.g., AZ-500, AWS Certified Security, Google Cloud Professional Architect / Security Engineer) or other related certifications required
- Reviewing security architecture deployments and assessing and/or implementing secure configurations for network and infrastructure components (including both on-premises and cloud environments).
- Assessing Governance, Risk and Compliance programs, perform benchmark reviews, align with industry leading standards and develop target state vision and roadmap.
- Performing cybersecurity threat and risk assessments.
- Supporting cybersecurity program remediation activities.
- Supporting cybersecurity compliance and regulatory remediation workstreams.
- Assessing and/or implementing security solutions and controls across both on-premises and cloud network environments.
- Strong project management skills and the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
- Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships
- Strong professional verbal and written skill
- Leading and managing one or more of the overarching areas below:
- Assessing cybersecurity programs and capabilities against industry leading frameworks (e.g., NIST CSF, CRI Profile) and compliance and regulatory requirements.
- Working knowledge of cybersecurity industry leading practices and frameworks, such as NIST CSF, CRI Profile, ISO 27001/2, NYS DFS 500, PCI-DSS, CIS Controls, CIS Benchmarks.
- Excellent analytical, organizational and project management skills
- Can travel as needed
