Job Role : Lead Security Consultant - EthicalHacker
Key responsibilities(analytical / decision making / supervisory) :
Evaluate, counsel, mentor and provide feedbackon performance of others.
Direct the dailyprogress of project work assigned to staff members, report statusto management.
Define security architecturesand provide pragmatic security guidance that balance businessbenefit and risks.
Perform technical riskassessments of information systems and infrastructure.
Maintain and enhance the information security riskassessment methodology of the practice.
Translate technical vulnerabilities into business riskterminology for business units and recommend corrective actions tocustomers and project stake-holders.
Provideknowledge sharing and technical assistance to other teammembers
Act as Subject Matter Expert (SME) inresponsible technologies and have deep technical understanding ofresponsible portfolios.
Provide technicalsupport and act as an advisory for pre-sales teams.
Actively engaged in preparation of business-relatedproposals.
Experience and skillsrequirements :
10+ years of combined experience in an InformationSecurity or Information Technology discipline, including previoustechnical security consultancy.
Experienceworking with common information security standards and frameworkssuch as : OSSTMM, OWASP, NIST, PCI DSS, ITIL,COBIT.
Experience in conducting Red Teamingtactical assessments.
Flexibility to adjust tomultiple demands, shifting priorities, ambiguity, and rapidchange.
Outstanding management, interpersonal,communication, organizational, and decision-makingskills.
Ability to team well with others tofacilitate and enhance the understanding and compliance to securitypolicies.
Experience facilitating meetingswith multiple customers and technical staff, including buildingconsensus and mediating compromise.
Adaptability to situations where the solution is notfully known.
Experience conducting technicalrisk assessments, vulnerability assessments, penetration test,vendor and third-party risk assessments and recommending riskremediation strategies.
Ability to understandand integrate cultural differences and motives and to lead crosscultural teams.
Strong English language skillsare required both written and spoken.
Qualifications, certifications andeducation requirements :
An advanced degree in Computer Science orComputer Engineering, or equivalent work experience.
Security certifications are not necessarily intended as aplus.