Advisory IR Services Consultant- Remote (Anywhere in the U.S.)

View full description

Requirements:

• Four (4+) years of experience in an Information Security Role.
• Experience with creating and facilitating Tabletop exercises for both technical and executive teams.
• Strong understanding and working knowledge of security frameworks including, NIST CSF, ISO 27K, and others.
• Experience in reviewing and developing Security Incident Response Plans, Playbooks, and Runbooks.
• Strong written documentation experience.
• Experience with common documentation tools including Microsoft Office, Confluence, and Diagraming Tools (Visio, LucidChart, etc.).
• Ability to learn new technologies and concepts quickly.
• Ability to manage projects, milestones, and deliverables for business-related objectives.

Responsibilities:

• Planning, facilitation, documentation, development, and coordination of follow-up activities for the cyber exercise program including Tabletop exercises, IR Plan, Playbook & Runbook development.
• Review of client documentation including incident response Plans, Playbooks, Runbooks, information security policies, network maps, architecture diagrams.
• Coordinate exercise planning teams with various technical, non-technical, and executive staff to plan and execute cybersecurity exercises.
• Work with internal teams to identify cyber risks, design threat scenarios, and execute exercises against planned scenarios and objectives.
• Assess observations and findings during exercises, communicate findings to stakeholders, and escalate high-risk findings for remediation efforts.
• Assist in the development of programmatic documents, briefings, and reports tailored to specific audiences.
• Develop information security policies, standards, plans, procedures, and other documentation to support customer-adopted frameworks and industry standards.