This job is closed

We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.

Cyber Security Advisory Consulting Sr. Consultant

$115,000 - $140,000/Yr

AON - New York, NY

posted about 2 months ago

Full-time - Mid Level
New York, NY
Professional, Scientific, and Technical Services

About the position

The Cyber Security Advisory Consulting Sr. Consultant at Aon is a client-facing role within the Proactive Security Services team, focusing on delivering customized cybersecurity solutions to mitigate risks and prepare clients for potential cyber incidents. This position involves conducting technical security assessments, developing security programs, and providing strategic recommendations to enhance clients' cybersecurity posture.

Responsibilities

  • Support delivery teams that conduct enterprise-level technical security assessments for various clients.
  • Perform blue teaming / purple teaming and technical security assessments against on premise and public/hybrid/private cloud environments.
  • Conduct Breach and Attack Simulations against client environments to gauge effectiveness of security controls and provide improvement recommendations.
  • Enhance and scale traditional defensive security programs for clients against ransomware, APT, and insider threat scenarios.
  • Assess IT network and security architectures in line with industry standard processes and frameworks.
  • Perform document reviews, analyze artifacts and conduct interviews with client security and technology personnel as part of security assessments.
  • Perform hands-on analysis as needed such as control / configuration review of client technology and security stack using automated and manual methods.
  • Develop client security programs by reviewing existing capabilities; conducting comprehensive reviews of threats; evaluating and analyzing relevant data points.
  • Recommend strategies to defend against threats such as ransomware, nation-state attacks, and insider threat.
  • Support engagement lead and team members during client engagement execution, ensuring timely progress, achievement of objectives, and delivery quality.
  • Contribute to maturing team competence and capabilities by improving delivery processes; mentoring team members and finding opportunities for new service offerings.

Requirements

  • Strong technical fundamentals in either Security Operations, DevSecOps, Red Teaming or Blue Teaming.
  • Professional experience in both offensive and defensive information security fields.
  • 2+ years substantive experience in a technical cyber security role (offensive and/or defensive).
  • 2+ years substantive experience with two or more of the following: Building and/or maintaining attack simulation and C2 infrastructure; Driving technical security assessments and attack surface analysis; Performing blue teaming/purple teaming, technical security assessments or penetration tests; Building and/or maintaining security operations program for large and complex environments; Hands-on experience red teaming/blue teaming for large complex environments; Providing security advisory services related to secure design and architecture, ransomware defenses, or post-breach remediation.
  • 3+ years in progressively sophisticated roles in information security consulting, with experience in various Cybersecurity domains, including security engineering, security operations, security architecture, cloud security and/or blue teaming/red teaming.
  • Familiarity with cybersecurity frameworks and standards such as NIST CSF, MITRE ATT&CK and CIS Critical Security Controls.
  • Strong oral and written communications skills.

Nice-to-haves

  • Recent consulting experience with a mid to large size consulting firm/practice preferred.
  • Security certifications (CISSP, GIAC, OSCP, AWS/Azure/GCP) a plus.
  • Experience working on cloud security teams, security operations teams, blue team/purple team engagements, ransomware defensive strategies would be a plus.

Benefits

  • 401(k) savings plan with employer contributions
  • Employee stock purchase plan
  • Medical, dental and vision insurance
  • Various types of leaves of absence
  • Paid time off, including 12 paid holidays throughout the calendar year
  • 15 days of paid vacation per year
  • Paid sick leave as provided under state and local paid sick leave laws
  • Short-term disability and optional long-term disability
  • Health savings account
  • Health care and dependent care reimbursement accounts
  • Employee and dependent life insurance and supplemental life and AD&D insurance
  • Optional personal insurance policies
  • Adoption assistance
  • Tuition assistance
  • Commuter benefits
  • Employee assistance program that includes free counseling sessions
Job Description Matching

Match and compare your resume to any job description

Start Matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service