Back to Job Search

Security Consultant (Remote - East Coast)

  • Location: Salt Lake City, 84101
  • Job Type:Contract

Posted about 1 year ago

Come work for this global leader in assurance, tax, transaction, and advisory services to be a part of building a better working world for customers and communities.

Position: Security Consultant
Location: Remote - East Coast
Term: 6 Months Contract

Day-to-day Responsibilities:

  • Review security architectures and provide pragmatic security guidance that balance business benefit and risks.
  • Engage IT project teams throughout the SDLC to identify and prioritize applicable security controls and provide guidance on how to implement these controls
  • Perform threat modeling and risk assessments of information systems, applications, and infrastructure
  • Maintain Information Security Policies and Compliance standards and enhance the InfoSec risk assessment and certification methodologies
  • Define security configuration standards for shared and multi-tenant platforms and technologies
  • Develop appropriate risk treatment and mitigation options to address security risks identified during security review or audit
  • Translate technical vulnerabilities into business risk terminology for business units and recommend corrective actions to customers and project stakeholders
  • Provide knowledge sharing and technical assistance to other team members
  • Act as Subject Matter Expert (SME) in responsible technologies and have deep technical understanding of responsible services and technology portfolios

Is it a good fit? (Requirements):
  • Advanced degree in Computer Science or a related discipline; or equivalent work experience.
  • Candidates are preferred to hold or be actively pursuing related professional certifications within the GIAC family of certifications or CISSP, CISM or CISA or similar cloud-security oriented certifications.
  • Five or more years of experience in the management of a significant Information Security risk management function
  • Experience in managing the communication of security findings and recommendations to IT project teams, business leadership and technology management executives