Security consultant

Job Responsibilities

15 years or more experience providing IT services to medium to large enterprise organizations

Three years or more experience in a Security Architect role focusing on delivering security solutions. Utility industry experience is preferred

Play an active role in developing security technical architecture and design that supports a robust technology solution, considering the client's business priorities

Review and onboard new technologies, ideas, and processes and prepare the security service roadmap

Participate in designated projects and business initiatives as the security subject matter expert

Good experience in project management, change management processes, and preparing documents required during multiple project stages, e.g., HLD, LLD, Test Cases, Run Books, Job AIDs, etc

Next-Generation Firewalls/VPN (e.g., Cisco ASA/FTD, Checkpoint, Palo Alto)

Various IPS/IDS

Email and Web Security (Ironport, Menlo Security, Z Scaler)
 

Multifactor Solutions (RSA, Gemalto etc.)

NAC Solutions (Cisco ISE, ForeScou )

SIEM/Logging Solutions (Qradar, Splunk)

Good understanding of various networking technologies and protocols

Good technical knowledge and can prepare/implement all required technical changes

Broad experience across several technology domains (virtualization, software-defined networks, computing, storage, network, database, data center, cloud, desktop, mobile devices, SCADA systems, identity & access management, etc.)

Root-Cause-Analysis on complex security incidents, reviewing infrastructure changes for business impact and possible gaps

Familiarity with cloud security capabilities with AWS/Azure

Participate and provide valuable input with tools/techniques used by external and internal threats and ways to detect, alert, and mitigate risks and incidents
Provides technical oversight over solutions, policies, and procedures to meet security and compliance requirements, including those aligned to NIST and NERC CIP

Provides direction to the Security Operations teams for best practices in the operations and management of security toolsets

Collects and compiles historical data on various security metrics; prepares reports and presentations for management, including security findings, recommendations, penetration, and vulnerability analysis of different security technologies