Contract Program Security Officer for 2 Circle Consulting Inc. Develops and administers security programs while ensuring compliance with US Government regulations in a Hybrid work setting.
PW
Hybrid Cybersecurity Threat & Vulnerability Manager, Cyber Security, Technology Consulting
Posted last month
About the role
- Threat and Vulnerability Manager at PwC conducting security assessments and advising on compliance standards. Leading a team to implement advanced security measures within client organizations.
Responsibilities
- Conduct security assessments, red team exercises, web application penetration testing, vulnerability assessment and secure configuration review to identify risks and recommend appropriate remediation measures
- Advising clients on relevant regulations, standards, and best practices (e.g., NIS2, ISO 27001, NIST)
- Help us grow the TVM team and service offerings
- Support the TVM team in implementing advanced red team infrastructure
- Identify and evaluate the latest technologies, tools and methods
- Keep apprised of the latest threats and new compliance relevant to the penetration testing.
Requirements
- Strong experience in offensive security
- Proven leadership in managing diverse teams
- Experience in developing payloads and obfuscating tools to evade modern day EDRs
- Significant experience in implementing red team infrastructure
- Experience in conducting regular vulnerability scans, penetration tests, secure configuration reviews of network devices, databases, windows and linux operating systems
- Experience in conducting red team assessment using tools such as Cobalt strike, NightHawk and Mythic
- Significant experience in web and mobile application penetration testing
- Experience with security assessment tools such as Burp Suite, Tenable Nessus, Qualys, Rapid 7 etc, as well as the associated methodologies
- Strong knowledge of attacker methodologies and tactics with experience in mitigating and addressing threats
- Intermediate experience in cloud penetration testing and its secure configuration review
- Experience with developing ransomware simulation script is a plus
- Experience in designing and implementing security architecture is a plus
- One or more technical security certifications is a plus: Offensive Security (OSCP, CRTO, OSEP, OSED, OSWE, OSCE, CRTO II, CRTP, CRTE)
- 5+ years of full-time dedicated experience in threat and vulnerability management focused roles
- Bachelor’s degree in Computer Science, Business information Systems, related field; or additional, relevant professional experience.
Benefits
- Competitive compensation package
- Inclusive employee benefits
- Flexibility programs that will help you thrive in work and life.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Contract Program Security Officer at 2 Circle Consulting Inc. overseeing government security compliance and managing personnel clearances. Administering security programs and policies in a hybrid role.
Cybersecurity Third - Party Risk Management Consultant leading risk assessments and compliance tracking for NIH/HHS systems. Managing third - party risk with a focus on federal cybersecurity mandates.
Entry - Level Network Security Engineer assisting IT security team with firewall implementation and monitoring. Focused on maintaining network integrity in a hybrid work environment.
Cybersecurity Designer executing and proposing process improvements at Bancolombia. Collaborating on cybersecurity functions to enhance client protection and information security.
Microsoft Security Specialist role at Syntax focused on delivering Microsoft security workshops and advisory engagements. Collaborating on technology implementation while ensuring customer security success.
Cybersecurity Specialist developing IT resilience and disaster recovery concepts for a global scale in secure IT services. Collaborating across borders in shaping organizational security standards.
Senior Cybersecurity Scrum Master focusing on release management at AT&T, collaborating across teams and managing production change requests with an Agile mindset.
BISO responsible for planning and executing enterprise - wide information security initiatives at Elsevier. Driving cybersecurity awareness and managing technical risk assessments for organizational improvements.
Develop innovative Cloud architectures on Microsoft Azure platforms. Secure cloud infrastructure and applications against various threats while working in a project team.