Consultant Security Job Description
Consultant security
provides support of operational tools and methods for dynamic application security testing (DAST), static application security testing (SAST), web application firewalls (WAF).
Consultant Security Duties & Responsibilities
To write an effective consultant security job description, begin by listing detailed duties, responsibilities and expectations. We have included consultant security job description templates that you can modify and use.
Sample responsibilities for this position include:
Provide security awareness to RBC Groups when called upon
Performs vulnerability assessments and penetration tests using such tools as NMAP, Nessus, BurpSuite, Metasploit and other toolsets as applicable
Analyzes and reconciles results of scans performed
Develop and enhance existing information security policies, procedures, aligned with Corporate Information Security program with Client’s project requirements
Develop Security Authorization Packages that are compliant with FedRAMP and DoD requirements under the supervision of senior staff members
Provide review and analysis of vulnerability scan results from tools such as Nessus, Qualys, AppDetective, WebInspect, IBM AppScan, Burp Suite
Work with some of the most established EMEA based clients, delivering consulting on best-in class networking security solutions and technologies
Develop positive and proactive relationships with internal clients projecting a professional image at all time
Coordinate the security team input, delivering products as required
Maintain the Privacy Impact Assessment & Information Risk Assessment
Consultant Security Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Consultant Security
List any licenses or certifications required by the position: CISSP, CISA, CISM, PCI, OSCP, ISO, QSA, GIAC, SANS, ITIL
Education for Consultant Security
Typically a job would require a certain level of education.
Employers hiring for the consultant security job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Business, Technical, Information Technology, Education, Information Security, Science, Management Information Systems, Computer Engineering
Skills for Consultant Security
Desired skills for consultant security include:
Security operations
Web application penetration testing
'hunt'
Application
Computer forensic tools
Database
Methods
Network penetration testing
Network vulnerability assessments
Open security testing standards and projects
Desired experience for consultant security includes:
Ability to write relevant components of a proposal document
Security solutions for firewalling, IDS/IPS, security analytics, logging and accounting, identity and access management, data protection
Must be able to demonstrate expertise in problem solving and conflict resolution
Thorough knowledge of Internet applications (SMTP, HTTP(s), FTP, telnet, SSH)
Willing to be part of on call rotation
Thorough understanding of logging formats/functions used across various types of logging sources (Windows Event Logging, Microsoft SQL, Syslog)
Consultant Security Examples
1
Consultant Security Job Description
Job Description Example
Our growing company is looking for a consultant security. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for consultant security
- Evangelizes realistic operating framework to govern application security and delivery assurance along with the respective portfolio SPOCs
- Review the collected incident data and confirm or reject incidents based on the analysis
- Classify and prioritize incidents based on established criteria
- Facilitate communication between stakeholders of the status of the incident
- Coordinate the containment effort based on the available information and established processes
- Communicate with the affected users and stakeholders to organize the containment effort
- Verify the effectiveness of containment actions taken
- Identify the attack vector of used by incident and confirm take actions to confirm that similar incidents are prevented in the future
- Coordinate forensics and law enforcement activities with officials if necessary
- Coordinate the recovery actions
Qualifications for consultant security
- IT security with a focus on computer incident response, malicious code/exploits, anti-virus
- Should be able to prioritise and manage multiple tasks
- Excellent report writing, presentation and customer interaction skills
- The candidate should have about 18-24 months of experience of having delivered projects in the security space
- Should possess sound technical knowledge and have implemented different security technologies such as Firewall, IPS, SIEM, DLP, Security Incidents, etc
- Candidate should have played role of a security consultant on a holistic range of security topics
2
Consultant Security Job Description
Job Description Example
Our company is growing rapidly and is searching for experienced candidates for the position of consultant security. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for consultant security
- Perform risk assessment, recommendation, analysis, expertise on company and industry security standards and perimeter security
- Provide input to problem and change management process support including assessing and evaluating software and hardware anomalies as it relates to the integration of the Acquired Entity related to security
- Attend weekly teleconferences, onsite meetings, and participate in working groups, as related to Acquired Entity projects and security environment initiatives
- Responsible for all aspects of security advisory services, including identifying requirements, scoping and
- Resourcing, delivery and execution, and ongoing strategic roadmap and client partnership
- Delivers ongoing security services, security assessments, risk assessments, gap assessments, and improvements to the security maturity of organizations through strategic guidance and security advisory services
- Work closely with strategic vendors/partners to ensure maximum utilization of security and compliance
- Toolsets
- Provide technical risk advisory around exceptions, calculate their residual risk levels and suggest amicable compensating controls to lower or mitigate the risks
- Does market research on best-of-breed solutions and create business cases for its adoption within VDSI
Qualifications for consultant security
- Strong knowledge of security architectures and technologies including assessment, methodologies, compliance standards
- Understanding of Security Analytics, Cloud Architecture and Cloud Security, Internet of Things security
- Demonstrate a significant impact on the operating efficiency of the area
- Fluency in Japanese (Japanese skills are required to communicating with local customers, sales, support)
- Bachelor Degree in Information Systems, Computer Science or related field with 5 or more years’ experience in Information Technology
- Technically proficient with security tool sets such as firewalls, IDS/IPS, antivirus endpoint protection, vulnerability scanners, log aggregation and analysis/SIM/SIEM
3
Consultant Security Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of consultant security. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for consultant security
- Ensuring all Trade ICT operated within the account is accredited, and operated in accordance with the system RMADS/SyOPs and that these documents are reviewed at least annually
- Confirming that all Trade ICT hardware, software and media is registered and correctly managed
- Providing compliancy oversight of Trade system security log management, user account management, authentication management, patching, AV updates, firewall configurations and any security monitoring for Trade ICT operated by the account
- Coordinating with the Group Security Controller the personnel security aspects of account Joiners, Movers and Leavers to ensure all staff have appropriate security clearance and meet any International Trafficking Arms Regulations (ITAR) nationality constraints for the ICT accounts and the duties they have been assigned and ensuring upon transfer or departure their privileges are revoked
- Facilitate an active Security Working Group(s) and maintain an account level Security Risk Register by ensuring risks are regularly reviewed and escalated within the requirements of the SIRO’s delegation and in accordance with current policies and directives
- Reporting all security related incidents promptly and, only when directed, provide independent investigation and reports
- Coordinating any external/internal security auditing of the account
- Reviewing RFCs for security considerations, ensuring peer reviews are conducted for all Delivery Assurance Reviews (DARs) and for alignment with wider security strategy and architecture
- Providing all security coordination for the account and maintain a robust security posture whilst striving to ensure all security requirements and goals are achieved
- Ensuring the most current contract security Terms and Conditions (T&Cs) and Security Aspects Letter (SAL) are posted on the Security SharePoint team site, checking their compliance across the account
Qualifications for consultant security
- IT architecture design principles and methodologies
- Risk management techniques based on industry concepts and best practices such as COSO
- Information security practices and procedures based on industry concepts of ISO 27001 (17799), CobIT, ITIL
- Fundamental concepts, practices and procedures of a particular information security discipline(s) (e.g., awareness and training, incident management, policy management, business continuity)
- Understanding contemporary and legacy security technologies used within a particular domain
- Experience with both host-centric and network-centric DLP software and techniques
4
Consultant Security Job Description
Job Description Example
Our company is looking for a consultant security. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for consultant security
- Work cooperatively with other senior security personnel (in Australasia and overseas)
- Establish and maintain good working relationships with private sector clients, government agencies, professional firms and consultants relevant to the team’s activities
- Prepare project reports for clients summarising key issues and strategically advising on best outcomes
- Participate in the preparation and delivery of detailed tender submissions and presentations
- Be fully aware of legislative requirements and other regulations governing Occupational Health and Safety, and assist in ensuring these are adhered to within the office and on all projects
- Document creation
- Collect, document and analyze business, technical, and security requirements for development initiatives
- Operationalize new security services
- Provide technical expertise in the planning, acquisition and implementation of security technologies and toolkits to support TELUS' strategic, tactical and operational plans
- Research industry standards and state-of-the-art technology developments to ensure that the enterprise security solution and technology security standards remain current
Qualifications for consultant security
- Technically proficient with security features of Windows, Windows Server, Active Directory, Hyper-V, Exchange and storage technologies
- Conversant with security features of Office 365, SharePoint, OneDrive, Azure and AWS
- Conversant with security regulations and frameworks such as HIPAA, privacy and ISO 27001
- Experience in consulting, banking or a technology start-up environment is highly advantageous
- Proven track record in relationship building especially with senior executives
- Highly adaptable to a rapidly evolving business landscape
5
Consultant Security Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of consultant security. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for consultant security
- Working directly with internal and external clients and their stakeholders to establish client requirements and to successfully deliver projects
- Capturing client and end user requirements and preparing detailed project briefs
- Developing and producing detailed and coordinated security designs and technical specifications
- Responding to commercial opportunities and preparing fee proposals and tender submissions
- Undertaking security system audits and site inspections
- Acting as project manager to deliver projects successfully, on time and within budget
- Escalate issues to vendors, security team, and engineering thrugh standard escalation processes
- Enhance understanding of business objectives and helps providing direction based on risk, Corporate Security Policy, and association and regulatory guidelines
- Manage senior business stakeholders and establish strong engagement to ensure that the delivery of the project or business initiatives aligns to longer term strategic roadmaps for the division and Group IT
- Within a business change programme, assists in the on-going triage of Security Engineering contribution and cooperates with business assurance and project staff to ensure that the level of appropriate technical resources is made available from other areas of Security Engineering
Qualifications for consultant security
- Strong sense of responsibility, self- motivation and ability to work under pressure
- Experience with compliance-related concerns across multiple geographies (SOX, FDA, EMA, HIPAA, ) in a global enterprise environment is recommended
- Experience working in multiple environments as a Cyber Security expert
- Network troubleshooting and analysis using various monitoring tools and devices
- Palo Alto Firewalls & Panorama Management console
- Enjoys dealing with people, solving problems and working to achieve team objectives in timely manner