Cyber Security Consultant

Public Consulting Group LLC (PCG) is a leading public sector solutions implementation and operations improvement firm that partners with health, education, and human services agencies to improve lives. Founded in 1986, PCG employs approximately 2,000 professionals throughout the U.S.—all committed to delivering solutions that change lives for the better. The firm is a member of a family of companies with experience in all 50 states, and clients in three Canadian provinces and Europe. PCG offers clients a multidisciplinary approach to meet challenges, pursue opportunities, and serve constituents across the public sector. To learn more, visit www.publicconsultinggroup.com.

Collaborating with our Technology Consulting team, you will help organizations streamline operations and achieve strategic goals to serve the public better. We provide the full spectrum of technology consulting services to help state and local agencies meet operational and program needs that enhance the lives of their user base.

Services:

• Strategy, Architecture, Planning, and Procurement

• Business Enablement

• Business Solutions

• Project Assurance

• Performs security assessments of information technology (IT) systems to verify they comply with applicable security standards.
• Performs reviews and assessments of organizational security controls (policies, processes, configurations) to verify they comply with applicable security standards.
• Coordinates and/or conducts penetration testing or simulates attacks to look for vulnerabilities in systems before they can be exploited.
• Coordinates with client organizations (state departments and federal agencies) to perform security audit activities.
• Writes and Prepares reports that document findings from security assessments and testing.
• Advises project managers of security and privacy requirements required by state and federal agencies.
• Assists with development and implementation of security standards and best practices.
• Interfaces with various architects, technicians, and business leaders to understand organizational needs, capabilities, and constraints related to IT security.
• Researches the latest IT security trends.
• Learns and adapts to new technologies in the ever-changing world of Information Security.
• Creates and documents security and privacy policies, procedures, or contractual language, as required.
• Establishes standard documentation and reporting templates for use in assessments.
• Recommends security enhancements.
• Participates in proposal teams, including writing proposal responses and advising of strategic approaches

The above is intended to describe the general contents and requirements of work being performed by people assigned to this classification. It is not intended to be construed as an exhaustive statement of all duties, responsibilities or skills of personnel so classified.

Qualifications

• Experience with writing and/or developing system security plans - NIST 800-53
• Experience with databases and SQL
  Experience with penetration testing
• Experience with cloud architecture and federal standards
• Experience in working state and federal government agencies
• Excellent interpersonal, verbal and written communication, including good presentation skills
• Can multi-task, communicate clearly, learn new technologies and processes, and provide support to process/solution owners
• Strong analytical and conceptual skills
• Ability to thrive in various hierarchical situations
• Ability to work within high-performing virtual teams and highly collaborative
• Builds excellent relationships with key internal resources based on trust and confidence
• Interested in both short-term results and long-term goals
• Ability to work with resources in multiple locations and business units
• Ability to get results while maintaining a service orientation
• DevOps experience and automated deployment of applications
• Experience in working with and communicating with technical staff and subject matter expert

 Education:

• B.S. or B.A. degree is a plus, with related business discipline experience.

Experience:

• 3+ years of experience in information security or information risk management.
• General operating knowledge of security for application and infrastructure, security threat/risk/data classification.
• Knowledge of industry standards NIST-800, HIPAA, HITECH, FERPA and various security protocols, such as PKI, SSL, Encryption, Data Redacting, DLP.
•  Familiarity with FireEye, Qualys, Email Security Systems, DLP, Data Encryption Antivirus, SIEM (Log Analysis), IRS Publication 1075, and Minimum Acceptable Risk Standards for Exchanges (MARS-E) a big plus.
• 3+ years managing or developing IT systems/solutions
• Understanding of various systems, like MS Active Directory, MS Windows, MS Exchange, Unix/Linux OS.

Certification

• Information security professional certifications such as CEH, CISSP, SANS, CISA, GIAC or similar are highly desired

Remote:

This position is remote with travel/onsite requirements. PCG is a remote-friendly organization and is committed to creating a culture where remote work remains a vital part of the company’s success. To be successful in a remote work role at PCG, you must:

• be available during your set working hours
• have a safe, private, and distraction-free environment in which to complete your work, and
• be able to give your full attention to the completion of your PCG job duties

Some travel to the office or elsewhere may be required for team meetings, client meetings, etc. We are accepting applications on an ongoing basis until filled. Compensation for roles at Public Consulting Group varies depending on a wide array of factors including, but not limited to, the specific office location, role, skill set, and level of experience.  As required by applicable law, PCG provides the following reasonable range of compensation for this role: $75,000-$120,000

#LI-AH1

#D-PCG 

#LI-remote

Compensation:

Compensation for roles at Public Consulting Group varies depending on a wide array of factors including, but not limited to, the specific office location, role, skill set, and level of experience.  As required by applicable law, PCG provides the following reasonable range of compensation for this role below. In addition, PCG provides a range of benefits for this role, including medical and dental care benefits, 401k, PTO, parental leave, bereavement leave

EEO Statement:

Public Consulting Group is an Equal Opportunity Employer dedicated to celebrating diversity and intentionally creating a culture of inclusion. We believe that we work best when our employees feel empowered and accepted, and that starts by honoring each of our unique life experiences. At PCG, all aspects of employment regarding recruitment, hiring, training, promotion, compensation, benefits, transfers, layoffs, return from layoff, company-sponsored training, education, and social and recreational programs are based on merit, business needs, job requirements, and individual qualifications. We do not discriminate on the basis of race, color, religion or belief, national, social, or ethnic origin, sex, gender identity and/or expression, age, physical, mental, or sensory disability, sexual orientation, marital, civil union, or domestic partnership status, past or present military service, citizenship status, family medical history or genetic information, family or parental status, or any other status protected under federal, state, or local law. PCG will not tolerate discrimination or harassment based on any of these characteristics. PCG believes in health, equality, and prosperity for everyone so we can succeed in changing the ways the public sector, including health, education, technology and human services industries, work.