Senior Associate Security Consultant

Key Responsibilities:

• Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems.
• Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies.
• Prepares and maintains documentation, including security assessment reports, findings, and recommendations.
• Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies.
• Learns and uses various security tools and technologies for assessments and monitoring.
• Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices.
• Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements.
• Communicates effectively with clients to understand their security needs and concerns.
• Participates in training programs and certifications to develop expertise in cybersecurity.

Knowledge and Attributes:

• Strong interest in cybersecurity and a desire to learn and grow in the field.
• Knowledge of basic cybersecurity concepts, principles, and best practices.
• Familiarity with common security tools and technologies is a plus.
• Excellent analytical and problem-solving skills.
• Effective communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.
• Eagerness to stay up to date with the evolving cybersecurity landscape.
• Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field.
• Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential.
• Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment.
• Moderate level of experience with security architecture design principles.
• Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others.
• Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others.