Cyber Security Consultant
JOB ID: 3100,Los Angeles, CA
Our client, a global leading property insurer of engineering-based risk management and property insurance solutions is currently seeking a Cyber Security Consultant to join their growing team.
Position to be based in the Los Angeles area.
In this position, you will:
Build and entrench credibility with clients on matters of cyber security.
Work directly with clients in interpreting risk assessment results and existing compensating controls.
Present results of the risk assessment to a broad range of clients and validate or assist in developing plans to address specific cyber risks.
Provide expertise to internal teams as well as external clients on risk management and mitigation.
Collaborate with the cyber team in the development, implementation and ongoing improvement of cyber assessment tools, services, and business processes.
Assist with internal training of client facing persons in communicating and understanding fundamental cyber security practices, risks, and recommended mitigation tactics,
Act as an internal and external spokesperson for cyber in support of our efforts and initiatives.
The successful candidate will have:
A Bachelor's degree in information security or a related discipline.
CISSP designation is preferred - other relevant industry certifications may be considered (GICSP, GISP, CISM, or CCSP a plus).
Experience with one or more of the following: security risk assessments, development of security standards, cyber security risk consulting, and incident management.
Strong knowledge of operating systems and networks.
Strong knowledge of and ability to identify IT and Cyber security vulnerabilities, threats, and mitigation strategies.
Minimum of 8 years of experience working in information technology with at least 5 years specifically working in the information/cyber security field.
Industrial control systems familiarity/experience preferred, but not required.
Experience working with enterprise-level information security programs, including governance, risk assessment, policy/standards, technical controls, oversight and assurance, risk treatment, and security education/awareness.
Consultant: Pam Inglis