Director, Information Security Management

Attention! This job posting is 544 days old and might be already filled.
Kraft Kennedy Published: November 29, 2015

<p><b><i>Vulnerability &amp; Penetration Testing Risk Assessment</i></b></p>
<p><span style="font-weight: 400;">Due to our market leadership in the legal industry, Kraft Kennedy’s Information Security &amp; Governance consulting practice is experiencing rapid growth. Our Information Security and Governance consulting practice assists firms with end to end consulting, testing, management, support and response to their security, governance and compliance needs.</span></p>
<p><b>Roles and Responsibilities</b></p>
<p><span style="font-weight: 400;">We are looking for a passionate </span><b>Director, Information Security Management</b><span style="font-weight: 400;"> with strong experience in security, technology, compliance, risk and governance who can take a leadership role in our growing Information Security &amp; Governance consulting practice </span><b><i>with a focus on vulnerability &amp; penetration testing, security architecture and </i></b><span style="font-weight: 400;"> </span><b><i>risk assessments.</i></b></p>
<p><span style="font-weight: 400;">The Director, Information Security Management will be responsible for leading a team to review and test our clients’ technical, administrative and physical controls within their information technology environment and provide guidance on mitigating the risks based upon the results. </span></p>
<p><span style="font-weight: 400;">The successful candidate must be an individual who understands business operations, information technology and security. This individual must have demonstrated leadership specific to technical information security issues as well as the ability to manage and develop staff. High level communication skills are essential to successfully translate technology and security requirements into business terms. Strong client service skills are necessary for interacting with various levels of internal IT staff as well as corporate leadership.</span></p>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">Maintain working knowledge of advanced cyber threat actor tactics and techniques</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Research, identify and understand new threats</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Conduct risk assessments, security audits, vulnerability/penetration tests with commercial, open source and self-developed tools and techniques</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Document and present findings to team and clients</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Work with and potentially lead incident response teams</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Manage, mentor and train fellow team members</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Internally educate business unit leaders, staff and executive leadership on the Information Security &amp; Governance practice</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Be involved with the sales process by working with the business development staff and clients to explain and demonstrate services and products</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Excel as a self-motivated individual who can work on their own as well as integrated with a team in a variety of situations</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Consistently work to improve our brand through thought leadership </span></li>
</ul>
<p><b>Desired skills &amp; Experience</b></p>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">5+ years consulting experience  leading vulnerability and penetration testing engagements,</span></li>
</ul>
<p><span style="font-weight: 400;">IT security audits and risk assessments, Experience in a number of IT disciplines may provide a solid framework for this position, but hands-on results from performing IT risk assessments, information security consulting or IT audits are most beneficial</span></p>
<ul>
<ul>
<li style="font-weight: 400;"><span style="font-weight: 400;">CISA, CISSP, CEH, GPEN, Security + or equivalent security testing and architecture certifications</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Proven experience with security tools such as Nexpose, Metasploit Pro, Nessus, Kali Linux, etc., as well as other various commercial and self-developed tools</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Experience with scripting languages such as python, ruby, etc., as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Strong knowledge of the Windows client/server architecture and familiarity with Linux/Unix</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Strong networking knowledge with a focus on security</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Familiarity with incident handling techniques and processes desired</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Team leadership and development experience required</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Must possess strong verbal and written skills</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Management consulting experience a must </span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Project management experience desired</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Industry visibility through conference presentations, blogging, academic papers and social media is desired</span></li>
<li style="font-weight: 400;"><span style="font-weight: 400;">Business development skills a plus</span></li>
</ul>
</ul>
<p>&nbsp;</p>
<ul>
<li><b><i><b><i>Law firm experience is a definite a plus!</i></b></i></b></li>
</ul>
<p>&nbsp;</p>
<p>&nbsp;</p>

Apply
 upload file ... Limit reached, delete at least one file below to add more.