Cybersecurity consultant at HiQ helping businesses enhance their cyber defense and security posture. Engaging with various industries to implement security standards and strategies.
About the role
- Sr. Manager, Cybersecurity leading IT Cybersecurity for Avantus. Managing solutions, incidents, and compliance for a clean energy company.
Responsibilities
- Key responsible owner to maintain and improve the efficacy of our IT cybersecurity solutions, controls, procedures, and policies that support the security posture of the company.
- Key responsible owner to respond to cybersecurity incidents, delegating investigation analysis and response to internal and external resourcing, as appropriate. Escalate incident response to leadership according to incident response plans, as appropriate.
- Drive solutions implementations and systems changes, with the help of internal IT support staff and external consultants, as necessary. Organize and manage projects and the required resources from start to finish.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to continually develop the strategy and trajectory of the broader IT department and the systems that support the company.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to execute cybersecurity solution implementations and special projects in support of the broader maturity and scaling of the IT cybersecurity program and its supporting systems.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to develop controls, standards, best-practice, policy, and process that will streamline cybersecurity operations and help protect the business as we scale.
- Lead the continued development and maturity and accuracy of security incident and event management (SIEM) systems, vulnerability management, security analytics, incident response, and other cybersecurity operational systems.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to strategically support broader IT infrastructure, systems, and cybersecurity initiatives.
- Generate and maintain project trackers, reports, or dashboards as helpful and efficient to support the team. Collaborate with IT and business stakeholders to deliver to longer-term projects, successfully documenting and executing change plans, and executing rollouts of cybersecurity systems and features in line with IT department and company goals.
- Stay on top of industry trends and new technologies as applicable and relevant to the business, including by leveraging access to various cybersecurity industry subscriptions, community networks, conferences and events, training platforms, and other resources, as supported by the company.
- Mentor and provide collaborative cybersecurity guidance to IT team members and business stakeholders.
Requirements
- 10+ years in IT security roles, ideally 5+ years specifically in cybersecurity leadership positions and/or managing IT Cybersecurity Operations and corresponding functions for the enterprise.
- Proven experience developing and implementing enterprise security programs
- Direct experience with NERC CIP Compliance standards and controls a strong plus.
- Direct experience managing a program adhering to at least one leading industry-standard cybersecurity control framework is a requirement. Experience specifically with CIS, NIST, ISO or other frameworks a strong plus.
- Proven experience implementing, administering, and supporting the enterprise cybersecurity cloud application and infrastructure stack.
- Explicit experience securing Microsoft and AWS cloud infrastructures.
- Skilled in incident response investigation analysis, cross-functional team triage, containment, recovery, post-incident review and root-cause analysis.
- Security mindset and dedication to best-practice and continual improvement.
- Service oriented, collaborative, and solution-driven mindset first and foremost.
- Strong communication skills, attention to detail, and ability to self-organize while parallel-processing and driving projects to completion.
- Experience with standard principles and practices of project management and budget development, work planning and organization.
- Cybersecurity Certification such as CISSP, CISM, CCSP, or other equivalent certification highly preferred.
- Explicit experience implementing AI governance for the enterprise is a strong plus.
Benefits
- 401(k) matching
- comprehensive medical and dental plan options
- flexible PTO
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Principal Advisor providing strategic leadership in health, safety, and security at DOC. Focused on driving long - term maturity, strengthening assurance, and lifting performance across the organisation.
Cybersecurity Senior Consultant responsible for evaluating cybersecurity and resilience capabilities. Collaborating with clients to enhance security posture and compliance through assessments and advisory engagements.
Security Architect leading security strategy development and implementation for Kyndryl. Conducting performance testing and ensuring compliance with security guidelines and audits.
Junior Consultant working on Cyber Security standards and customer advisory at MKS4U IT - Beratungs GmbH. Engaging in security assessments and developing long - term security strategies.
IT - Security Consultant at Institut für Datenschutz und Datensicherheit guiding IT compliance and security strategies. Engage with clients to enhance IT security practices across Germany.
Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.