Cyber Security Consultant (Remote, US)
Remote (US)
Crosslake Technologies
Crosslake is a global advisory providing technical due diligence and value creation services for private equity investors and portfolio companies.
(this position is remote but candidates must be based in the United States) What we believe In the past two years, more than a trillion dollars have been invested in software companies at record prices. And in many cases, the underlying tech is the greatest enabler to the business strategy. But has the approach to govern technology value creation caught up to the magnitude of the risk? We believe a better way is possible – a more programmatic, proactive approach to actively manage technology throughout the investment lifecycle – and that’s what we do. Our role We know that technology can create truly transformative change, and its role in business is only growing. Crosslake is here to support the changemakers and help them buy, build and run better technology. What we value You could be a good fit for Crosslake if you see yourself reflected in our guiding values: Service. We effect change by empowering others. Curiosity. We believe great advice starts with deep understanding. Credibility. Our expertise is earned and proven. Commitment. It’s our privilege to serve clients in their critical moments. Creativity. We are inspired by the constant pursuit of better. In this role you will:
Work with our private equity and portfolio company clients, consulting on how to apply an information security vision and strategy in alignment with customer business objectives.
Work with customers to assess and address information security risks.
Interact with customers executives (EX: CIO, CTO, CEO, DPO) to understand and implement desired change in the customers organization.
Assist in leading enterprise-wide cybersecurity operations teams, processes, and responses.
Assist in managing customer security programs including the achievement and/or maintenance of key compliance initiatives such as SOC, ISO27001, NIST, PCI, and SOX.
Execute and direct the identification, containment, mitigation, and recovery activities related to cybersecurity incidents that may negatively impact customer assets or services.
Represent Crosslake in industry cybersecurity forums and working groups, including sector-specific cyber threat intelligence communities.
Work with customers to evaluate, implement, and secure key systems within their environment.
Analyze and assess customer systems for security / risk exposure and provide business-prioritized remediation recommendations.
Assist in handling the documentation, development, implementation, and maintenance of processes related to strong security and compliance controls in customer environments.
Work with Operations teams to ensure security architectures are appropriately assessed and able to be supported.
Work with Engineering and Operations teams to implement new technologies and security solutions in alignment with industry best practice and commonly accepted principles of secure design.
Work with our private equity and portfolio company clients, consulting on how to apply an information security vision and strategy in alignment with customer business objectives.
Work with customers to assess and address information security risks.
Interact with customers executives (EX: CIO, CTO, CEO, DPO) to understand and implement desired change in the customers organization.
Assist in leading enterprise-wide cybersecurity operations teams, processes, and responses.
Assist in managing customer security programs including the achievement and/or maintenance of key compliance initiatives such as SOC, ISO27001, NIST, PCI, and SOX.
Execute and direct the identification, containment, mitigation, and recovery activities related to cybersecurity incidents that may negatively impact customer assets or services.
Represent Crosslake in industry cybersecurity forums and working groups, including sector-specific cyber threat intelligence communities.
Work with customers to evaluate, implement, and secure key systems within their environment.
Analyze and assess customer systems for security / risk exposure and provide business-prioritized remediation recommendations.
Assist in handling the documentation, development, implementation, and maintenance of processes related to strong security and compliance controls in customer environments.
Work with Operations teams to ensure security architectures are appropriately assessed and able to be supported.
Work with Engineering and Operations teams to implement new technologies and security solutions in alignment with industry best practice and commonly accepted principles of secure design.
Knowledge
- Knowledge of legal and regulatory requirements, including the frameworks such as ISO27001, PCI, HIPAA, SOC, SOX, and NIST.
- Strong knowledge around the requirements of the above frameworks and implementing security best practices within an organization.
- Solid understanding of business management processes, including employing information security risk management and cybersecurity technologies
- Knowledge of application security, cloud security, encryption techniques, identity and access management, mobile security, network security, and virtualization security.
Education/Experience
- 15+ years securing organizations as an in-house team member or advisor / consultant in roles like: Chief Information Security Officer, Director / Manager of Information Security, Director / Manager of Compliance, Principal Security Analyst, Principal Security Engineer, Security Architect
- Demonstrated history of being able to successfully implement security controls within an organization.
- Experience in leading within a fast-paced, complex organization.
- CISSP or equivalent certification is preferred.
Skills
- Ability to work from home (or an office of your choosing) and be self-directed, but also effectively collaborate with the team in both a remote and in-person capacity.
- Strong technical acumen and technical horsepower
- Be willing to learn and take on new areas that may be outside of your initial comfort zone.
- Passion towards making others great and making a high-performing team even better.
- An action-oriented personality – you know how to get stuff done.
- Great communicator to peers, clients, executive leadership, and boards
- Understanding customer objectives and driving results toward those objectives
- Ability to learn fast and on-the-job.
- Responding effectively to rapid change in needs, processes, and technologies
- Ability to understand key concepts and communicate clearly and concisely, including technical details and processes.
- Ability to collaborate effectively and build relationships at all levels, especially with senior leaders.
- Strong organizational skills with the ability to perform under pressure and manage multiple priorities with competing demands for resources.
- Robust analytical, data processing, and problem-solving skills
- Proficiency in process formulation and improvement
- Strong analytical skills, including managing multiple projects under strict timelines and working effectively in a dynamic environment to meet objectives.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
24
8
0
Category:
Consulting Jobs
Tags: Application security CISO CISSP Cloud Compliance Encryption HIPAA IAM ISO 27001 Mobile security Network security NIST Risk management SOC SOX Strategy Threat intelligence
Regions:
Remote/Anywhere
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Security Analyst jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Penetration Tester jobsSecurity Specialist jobsSenior Information Security Analyst jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsSystems Engineer jobsSystems Administrator jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsCloud Security Architect jobsIT Security Analyst jobsPrincipal Security Engineer jobsStaff Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
DevSecOps jobsKubernetes jobsEncryption jobsPowerShell jobsIDS jobsSplunk jobsSaaS jobsEDR jobsSDLC jobsIPS jobsRMF jobsSQL jobsTop Secret jobsIntrusion detection jobsBash jobsCompTIA jobsThreat detection jobsITIL jobsFinance jobsOWASP jobsDoDD 8570 jobsCRISC jobsDocker jobsActive Directory jobsBanking jobs
UNIX jobsTCP/IP jobsVPN jobsGIAC jobsTerraform jobsSANS jobsClearance Required jobsIT infrastructure jobsHIPAA jobsSOX jobsSOC 2 jobsOSCP jobsCISO jobsIndustrial jobsJavaScript jobsCCSP jobsData Analytics jobsDNS jobsSOAR jobsPolygraph jobsJira jobsAnsible jobsMITRE ATT&CK jobsCyber defense jobsGCIH jobs