Minimum qualifications:
- Bachelor's degree in Computer Science, Information Systems, Cybersecurity, a related technical field, or equivalent practical experience.
- 3 years of experience with key security program functions, including cyber defense operations, security architecture, identity and access management, vulnerability management, or cyber risk management.
- 2 years of experience with cloud security, threat modeling, or detection development.
- Certifications in Cloud (e.g., CCSP, CCSK, etc.), or other industry certifications (e.g., CISSP, CISM, CISA, etc.).
- Experience in one or more of the following information security domains: Incident Response, Security Operations, Threat Intelligence, Cloud Security, Enterprise Architecture.
Want more jobs like this?
Get Computer and IT jobs delivered to your inbox every week.
About the job
Mandiant Strategic Services is a team of passionate security experts who help organizations of all sizes prepare for, prevent, and respond to cyber threats. What makes our team unique is the comprehensive range of services we offer, from client security assessments and tabletop exercises to rapid reviews of cloud security architecture and configurations. We are committed to helping our clients achieve their security goals and believe that every organization deserves to be protected from cyber attacks. We work to provide our clients with the tools and resources they need to stay safe.
As a Strategic Security Consultant, you will lead and support projects on behalf of clients that assess, test, or build their security programs. You will provide guidance and advice to clients on best practices and managing the risks for their security program.
Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats.
Responsibilities
- Develop roadmaps and recommendations to drive client enhancements of their cloud security architecture, governance, and standards. Identify, incorporate, and articulate cloud security best practices such as DevSecOps strategy, Zero Trust design, and cloud incident response.
- Perform security configuration reviews for common cloud-based SaaS platforms. Interface with clients to address concerns, issues, or escalations. Track and drive to closure any issues that impact the service and its value to clients.
- Conduct security reviews and maturity assessments across technology and business teams to address cyber risk. Provide clear and organized risk findings and recommendations to clients.
- Evaluate client needs, coordinate design for a solution, and clearly communicate the value proposition of complex technical subjects.Implement or assess existing security controls.
- Travel up to 20% of the time as needed.