Security Advisory Consultant

IPDAV Inc • Remote (Minnesota, United States, US) • 5m ago

Description:

Join our team at the Minnesota Public Employee Retirement Association (PREA) as we seek a dedicated Security Advisory Consultant to provide essential security assessment and governance guidance. In this role, you will play a pivotal role in evaluating current security tools, processes, and posture, while offering ongoing support and recommendations for enhancements.

Key Responsibilities:

Conduct comprehensive risk assessments to identify and prioritize cybersecurity risks.
Develop and implement risk management strategies aligned with organizational goals.
Create and maintain a cybersecurity program, establishing and enforcing security policies and procedures.
Provide oversight and governance for the organization's cybersecurity program, ensuring compliance with regulations and standards.
Develop and maintain incident response plans, leading or advising on incident response efforts during security incidents.
Assess and manage security risks associated with third-party vendors, ensuring compliance with security and compliance requirements.
Review and evaluate the organization's security architecture, recommending improvements to enhance overall security posture.
Ensure compliance with industry standards, regulations, and legal requirements, staying informed about changes in compliance obligations.
Document security incidents, investigations, and resolutions, analyzing incidents to identify root causes and areas for improvement.
Evaluate and recommend security technologies and tools, staying abreast of emerging threats and cybersecurity solutions.
Develop a long-term cybersecurity strategy aligned with business objectives, advising executive leadership on cybersecurity investments and priorities.
Establish key performance indicators (KPIs) and metrics to measure the effectiveness of the cybersecurity program, generating regular reports for stakeholders.
Conduct regular incident response simulations and testing, identifying areas for improvement in incident response capabilities.
Continuously monitor and evaluate the cybersecurity landscape for emerging threats and best practices, providing knowledge transfer.

Desired Qualifications:

Five (5) years of experience in the Security Advisory role.
Two (2) engagements lasting more than six (6) months in a Network/IT Infrastructure/Cybersecurity Security Advisory role.
Hold at least one of the following industry-recognized certifications:

CISSP (Certified Information Systems Security Professional) or

CISM (Certified Information Security Manager).

Leadership and Strategic Vision for cybersecurity aligned with business goals.
Decision-making abilities with a focus on balancing security needs with business objectives.
Risk Management in addressing high-impact security risks effectively.
Ability to communicate complex cybersecurity concepts to non-technical stakeholders and leadership.
Incident Response and Crisis Management experience.
Security Governance in establishing and maintaining security governance structures.
Collaboration and Relationship Building with cross-functional teams.
Interpersonal skills to work effectively with internal and external stakeholders.
Technical proficiency in cybersecurity technologies, tools, and best practices.
Awareness of emerging threats and trends in the cybersecurity landscape.
Commitment to continuous learning and staying abreast of the latest cybersecurity trends, threats, and technologies.
Analytical and Problem-Solving Skills to assess complex cybersecurity issues.
Flexibility and Adaptability to evolving cybersecurity threats and organizational needs.

If you're an experienced Security Advisory Consultant seeking to contribute to a dynamic organization, we invite you to apply now. Join our innovative team and help safeguard critical systems and data. Send your resume and cover letter to admin@ipdav.net to be considered.