Security Consultant Job Description
Security consultant
provides guidance on building and/or maturing information security programs, remediation, detecting and responding to computer security incidents, and implementation of tools and technologies used for enterprise security.
Security Consultant Duties & Responsibilities
To write an effective security consultant job description, begin by listing detailed duties, responsibilities and expectations. We have included security consultant job description templates that you can modify and use.
Sample responsibilities for this position include:
Analyze the incident response effort, with feedback from Customer and third parties
Use the results of the analysis as an input for improvements, such as incident response process changes or changes in security monitoring
Analyse existing systems and services to understand the associated risks and use this knowledge to influence the development of the centralised registration service and end-to-end switching arrangements
Develop and capture security and privacy requirements for the centralised registration service and contribute to the production of technical specifications and delivery plans
Support the development of the end-to-end switching security architecture
Produce the Security Management Plan
Provide security expertise into design prototyping projects and maximise the value of prototyping by taking forward the learnings and outputs into the solution and end-to-end design
Participate in market engagement and procurement of the new centralised registration service, including liaising with potential suppliers and producing relevant security content
Undertake further security-related activities as required by the Switching Programme
Leads or participates on teams that perform technology risk assessments, FFIEC and NIST cybersecurity assessments, security program governance, and security assessment and testing services
Security Consultant Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Consultant
List any licenses or certifications required by the position: CISSP, CISA, CISM, PCI, OSCP, ISO, QSA, GIAC, SANS, ITIL
Education for Security Consultant
Typically a job would require a certain level of education.
Employers hiring for the security consultant job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Business, Technical, Information Technology, Education, Information Security, Science, Management Information Systems, Computer Engineering
Skills for Security Consultant
Desired skills for security consultant include:
Tools and technologies used for enterprise security
Internet
Proficiency in using Computer and Microsoft Office applications
Incident response
Areas of security operations
Computer forensics
Malware analysis
Security event analysis
Tools used in penetration testing
Experience with various industry standards / regulations / best practices
Desired experience for security consultant includes:
Technical certification with major vendors Cisco, HP, McAfee, RSA, Juniper, Fortinet, Citrix, CA, Oracle, VMware, etc
At least 5 years experience in performing PCI Assessments (DSS and PA-DSS) for end clients
At least 3 years experience in Security Consulting
At least 1 year experience in management consulting and systems integration or Managed Security Services in a top tier professional services firm
At least 2 years experience in working in projects related to the core security domain
20 years in IT with a minimum of 10 to 15 years of demonstrated experience in providing detailed technical architecture expertise on Security Solutions within large corporate environments with a focus on solution implementation
Security Consultant Examples
1
Security Consultant Job Description
Job Description Example
Our company is hiring for a security consultant. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for security consultant
- Confirm that all temporary containment efforts have been removed
- Update stakeholders on the status of the recovery effort
- Conduct a root cause analysis for the incident
- Communicate the results of the root cause analysis to Customer and stakeholders to prevent similar incidents in the future
- Develop and document processes and procedures to aid in incident detection, triage, and escalation
- Identify use cases that generate events in the SIEM
- Collaborate with other teams and develop hand-off procedures and controls
- Establish best-practices around techniques and tools to find and confirm security events
- Support and collaborate with Acquired Entities Integration and Business teams on solutions and deployment of company standard security technologies and access controls
- Build, design, test, and deploy Palo Alto firewalls including upgrades, policies, DMZ, audits, connectivity
Qualifications for security consultant
- Develop & prepare the pursuit of several near opportunity
- Develop New & Unique consulting services which is focused on finance industries
- Need to understand financial industry focused regulations
- Excellent communication skills, good attention to details, strong organization skills, should be available to travel and work on weekend shift if required
- Risk Management and Technical Risk Assessment
- Programme and Project Governance/Management
2
Security Consultant Job Description
Job Description Example
Our innovative and growing company is searching for experienced candidates for the position of security consultant. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for security consultant
- Continually review VDSI’s security posture across all ecosystems for possible gaps and provide risk based decision support for better control governance
- Assists the portfolio security leaders to develop in depth security architecture standards, frameworks and design patterns
- Acts as a subject matter expert in the secure development lifecycle management with strong understanding of the trends and industry practices besides security testing paradigms like SAST and DAST
- Will mentor and manage consultants to drive the right ordinance around IT security institution through reviews and assessments
- The Security Consultant typically has task responsibility within one project and develops the capability to perform tasks within of our security practices
- Establish deep trust relationships with customer’s key security leaders and related IT/controls and business operations personnel
- Design security strategies and implement best practices for cloud security, including AWS and Azure
- Maintaining the currency of their Account Security Plans and supporting documents required by the Information Security Management System (ISMS)
- Maintaining good communication channels with their respective security authorities and Security Assurance Coordinators (SACs)
- Ensuring all account staff with subordinate security responsibilities are adequately briefed and that their security tasks are carried out effectively and efficiently
Qualifications for security consultant
- Required to function independently to analyze information and report variances
- Professional Security certifications (CISSP, CEH, GCIH, ) certifications are desired
- Vendor specific engineering certifications
- Business requirements analysis and support for Solutions Architects
- Experience advising customers on architectures meeting industry standards such as SAS70, SOC1, FISMA
- AWS Certification, AWS Solutions Architect Associate
3
Security Consultant Job Description
Job Description Example
Our company is growing rapidly and is hiring for a security consultant. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for security consultant
- Ensuring that the Group Security Controller is apprised of any specific contractual protective security requirements
- Actively supporting the Security Improvement Programme (SIP) initiatives within the accounts and fulfilling any other security related management issues that may arise
- Facilitating security audits of their account, ensuring staff are prepared, all related records and documents are current and are made available for inspection
- Understand the design process and the approach to formulate security requirements so as to develop comprehensive security plans for various types of projects
- Understand security planning and design concepts and the capability to turn the concepts into design
- Understand risks assessment methodologies and able to perform Threat Vulnerability and Risk Assessment (TVRA) for security threats
- Provide protective security engineering (electronic and protective) design
- Liaise with clients and stakeholders to confirm security requirements during design process
- Prepare and deliver design documentation
- Coordinate design related issues with other disciplines as part of a multi-disciplinary design team
Qualifications for security consultant
- BS or MS in CS, CE or EE-10 + years experience with security technologies and applying those technology solutions to the product development lifecycle for hardware or software
- Conduct site surveys and design security systems based on users' requirements company's quality standard
- Electronics Engineering qualifications preferred
- Relevant experience in the services industry preferred but not essential
- Fluent in written & spoken Chinese and English
- A high level of initiative & integrity
4
Security Consultant Job Description
Job Description Example
Our innovative and growing company is looking for a security consultant. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security consultant
- Provide security subject matter expertise and security guidance for corporate customer-facing projects and initiatives to address security gaps and ensure the system/product meets corporate policy, industry and regulatory compliance requirements
- Provide security project management and consulting support, and act as security prime for projects as required
- Liaise with external business clients as required
- Provide detailed technical responses for Requests for Proposal (RFP) and Requests for Information (RFI)
- Identify critical business issues and assist assigned sales team in developing strategy for a total sales approach
- Interface between Sales and Consulting to ensure prospect expectations are correctly set during the presales process
- Coordinating defect resolution/Central point of contact for client and HPE technical resources
- Work with 3rd parties, managed services support teams or vendors
- Build a relationship with the key stakeholders within the assigned customers
- To conduct vulnerability assessment and penetration tests
Qualifications for security consultant
- Firewall logging/monitoring/troubleshooting/analysis
- Proficiency in Palo Alto Firewall integration, deployments, configuration, and support management in department and enterprise environments
- Capable of planning and leading meetings with multiple members from other technology teams, work independently and on multiple projects as needed
- Experience in Industry IT Security standards
- Know the market on Security and IT
- Flexible and open minded, willing to learn
5
Security Consultant Job Description
Job Description Example
Our innovative and growing company is searching for experienced candidates for the position of security consultant. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security consultant
- Provide well-informed Security Engineering advice, typically on more than one topic, taking steps to ensure that it is properly understood and appropriately exploited, to enhance the effectiveness of significant activities
- Ensure all areas of specialism within Cyber Engineering are appropriately engaged and kept informed of developments for the aligned portfolio or CIO function
- Lead and facilitate any requests from Senior Cyber Security & BUCF Leadership team warranting support across any SME’s from Cyber Engineering function
- Lead consultancy studies and services on IT security and technical matters regarding a large landscape of IT projects and systems in a challenging environment
- Perform Security/Quality/Technical reviews of documentation
- Perform security related IT process assessments and audits
- Apply your technical knowledge in a quality control, verification, coordination and consulting role
- Support and actively contribute to improving security and technical aspects in the IT lifecycle by providing written recommendations for improvement and reports
- Participate in security/technical workshops and pre-reviews
- Coaching on information systems security and IT processes
Qualifications for security consultant
- Expert level understanding of policies and procedures, technical security solutions and infrastructure modifications to ensure SOX, PCI, HIPAA, are met
- Open to Travel up to 50% ( 2 days a week twice a month)
- Experience developing secure coding practices with Java, JavaScript, C++, and Objective C
- Demonstrated experience with mobile application security testing
- The applicant must be fluent in Portuguese or Spanish and have advanced skills with English
- To do this job, you must be proficient in technical support, HSM deployment, network and storage encryption, cryptography, network security protocols