Job Description

Job Title Information Security Consultant

Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant's approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

The Mandiant Consulting Strategic Services team ensures the long-term success of our clients by providing talented, passionate and specialized security consulting expertise. We are looking for motivated consultants with strong communication skills to help our clients build effective security programs. The successful candidate will possess experience in threat intelligence, security governance, security risk management, security operations, and/or cyber incident response programs.

What You Will Do:
Conduct security program assessments and build roadmaps to improve clients' security posture
Deliver intelligence-led table-top exercises
Assess SOC and incident response team capabilities and provide recommendations for improvement
Advise clients on how to prepare for incidents such as ransomware
Develop bespoke documentation such as Incident Response Plans and Playbooks
Participate in client workshops and deliver reports
Qualifications
Requirements:
3+ years of professional information security experience
Bachelor's degree in information security, information technology or related technical discipline
Strong understanding of the threat landscape
Expertise in one or more of the following areas: Incident Response, Security Operations, Security Governance, Threat Intel, Cloud Security, Architecture, Data Protection, Network Security, Endpoint Security, IAM
Basic understanding of regulatory requirements such as GDPR
Basic understanding of security frameworks, such as ISO 27001, NIST 800-53, HIPAA/HITECH, or PCI DSS
Basic knowledge of tools used in security event analysis, incident response, computer forensics, malware analysis or other areas of security operations
Basic understanding of networking, including TCP/IP protocols and network topology
Basic understanding of security controls for common platforms and devices
Desired Qualifications:
Ability to successfully communicate with a range of technical and executive stakeholders
Ability to explain technical details in a clear and concise manner

You have applied correctly

A message has been sent to the employer, you are going to receive the reply soon. Good luck!

You have applied correctly

The request has been sent correctly. However, we have seen that your resume is incomplete. We highly recommend you to fill it to let the employer know you. These are the fields you have empty: