Manager - Cyber Security , Engineering Consulting

Sia Partners

Charlotte, NC

Expired: over a month ago Applications are no longer accepted.

Full-Time

Job Description

Company Description

Sia Partners is a next-generation consulting firm focused on delivering superior value and tangible results to its clients as they navigate the digital revolution. Our global footprint and expertise in more than 40 sectors and services allow us to enhance our clients’ businesses worldwide. We guide their projects and initiatives in strategy, business transformation, IT & digital strategy, and Data Science.

Why join the Sia Village?

These are the six core values that guide all our actions. As an expression of our values, our Sia Village concept describes our commitment to fostering a sense of community within and among our offices. We believe that knowledge sharing is the key, not only to innovation, but to the growth and development of our people.

Job Description

Our values have led us to two decades of global expansion. Sia Partners is seeking a talented and enthusiastic consultant to work with the head of the US Cyber Practice to build and develop the Cybersecurity & Data Privacy practice. You will have the opportunity to support go-to-market efforts and delivery of Sia’s Cybersecurity “Global Storefront” encompassing: strategy, risk management, compliance, operations, resilience and training. As a member of the practice, you will work with some of the largest financial institutions and companies in the US.

Key Responsibilities

Our US Cybersecurity team is an integral part of our Global Store Front, providing support to our clients on a wide array of topics, including but not limited to:

Strategy
Risk
Compliance
Operations
Resilience
Training

Responsibilities:

Offerings & Solutions

Conduct and manage penetration testing campaigns: Web; on premises / Cloud; thick / thin client; WiFI / SDR / VoIP / Video Conference; Mobile iOS / Android; OT (embedded systems, physical access, IoT, ICS, SCADA and DCS) and code review
Benchmark and decision support for technical choices around Cloud solutions and offers;
Design of Cloud solutions both on the technical and functional side;
Realization of PoC/PoV and automation of the installation of technical bases;
New architecture principles (micro services, containers, ...) and new deployment methods induced by Cloud infrastructures (integration and continuous delivery in particular);
Training of users and administrators to the deployed solutions.
Support and enhance our Operational Resilience offering
Support go-to-market for our proprietary Cyber Risk Review (C2R) SaaS which quantifies cyber risk through attack modeling based on the NIST framework

Client Delivery

Apply strategic and critical thinking to develop recommendations that address client challenges
Summarize and present findings to executive sponsors of projects
Collaborate with engagement team to deliver high-quality work products

Business Development

Manage projects and relationships with flagship and key accounts
Lead and support business development and proposal efforts
Senior Manager or Manager will be expected to advance sales efforts and lead internal corporate initiatives

Internal Initiatives

Work with the MD of Cybersecurity to manage the team regarding internal initiatives while ensuring client deliverables are submitted on time
Provide guidance and mentoring as a Career Advocate to junior team members
Manage program sites as a repository for all project information

Qualifications

Bachelor’s degree required (Master’s degree a plus) in either: Information Security, Information Technology, Computer Science, Data Science, Mathematics, etc.
Possesses solid knowledge of IP networks, operating systems (Unix/Linux, Windows and/or MacOs), Cloud (AWS, Azure and/or GCP), applications (Web Server, DB, Middleware, etc.);
Mastery of a Cloud technology (AWS, Azure, GCP...) associated with a security and network expertise, and an expertise in “Infrastructure as Code” tools (CloudFormation Terraform);
Familiarity with the major market solutions and technologies of: Endpoint Security, VPN, VSX, Proxy/Reverse Proxy, EDR, IAM, MDM, DLP, CASB, Office 365 Security, etc.
Solid knowledge of Python, C++, Java, Ruby, Node, Go and/or PowerShell;
7 to 11 years of recent client-facing management consulting experience with an emphasis on cyber related projects, ideally covering one or more of the following topics:

o Experience with industry standard frameworks, including: NIST CSF, 800-53, etc.,

FFIEC CAT, NYDFS Part 500, Fedline Security and Control Procedures, SWIFT CSCF,

ISO 2700x, SANS, BCP/DR reviews

o Tabletop exercises, including scenarios, After Action Reports (AAR) and playbooks

o Third party risk management (TPRM) / vendor risk, including SOC 1 2 reports, vendor evaluation and scoring, onsite visits, etc.

o Offensive security and frameworks, including red or purple teaming, cyberattack chain,

MITRE ATTK framework and CVE, OWASP, etc.

o Understanding of and preferability to conduct pentests and vulnerability scans

o Cloud security and/or network expertise (AWS, Azure, GCP)

o Data mapping and lineage

o Knowledge of cryptography and/or blockchain a plus

o Non-Financial Risk quantification, especially cyber, a strong plus

Holds or is willing to obtain within the first year of joining one of the following certifications: CISSP, OSCP, CEH, CISM, CISA, CRISC, etc.
Ability to demonstrate and apply knowledge of data protection regulation and laws to consulting projects, such as the EU-GDPR, CCPA/CPRA, HIPAA, GLBA, and CDPA
Based near one of our U.S. operating offices and eligibility to work within the United States

Additional Information

Please be aware that Sia Partners requires all employees in this position to be fully vaccinated against COVID-19 as a condition of employment. “Fully vaccinated” means that the individual can provide acceptable proof that the individual has received, at least fourteen (14) days prior to the individual’s start date, either the second dose of a two-dose COVID-19 vaccine, or one dose of a single-dose COVID-19 vaccine. Vaccines must be authorized and/or approved by the FDA. Individuals needing an exemption to this requirement due to medical, disability-related, or religious reasons may request an exemption during the recruiting process. The Company will engage in an interactive process to determine if an exemption to this requirement as a reasonable accommodation is appropriate.

Benefits:

Entrepreneurial journey
Career advocacy program that supports achieving professional development goals through guidance, and real-time feedback
Continuous learning & development opportunities
Diversity, equity, and inclusion programs with an ever-growing list of global affinity initiatives
Healthcare coverage that includes medical, dental, vision and life insurance policies
College save-up plan & college loan repayment plan
Generous vacation, sick, floating, and holidays, including parental leave
401(k) matching
Annual seminar, an in-person value-add experience that allows you to network with colleagues throughout North and South America (during non-COVID times)

Our Commitment to Diversity

Diversity, equity, inclusion, and belonging (DEIB) are part of Sia Partners’ DNA. Thanks to our expertise in several sectors and our international growth, our teams include a variety of experiences and cultures. We’re confident that promoting DEIB creates an environment in which everyone can reach their full potential.

Our global network, DEIB@Sia Partners, brings together our people worldwide to facilitate local and global progress, focused on the following areas:

Gender equality (global Gender Equality Index score of 91/100 for FY19-20)
LGBTQ+
Race & Ethnicity
Working Parents
Disabilities

Sia Partners is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.

To learn more about our mission, values, and business sectors, please visit our website.