This job has expired, please see additional jobs below
Cyber Security and Privacy - Manager
CohnReznick
New York, NY, United States
Job Details - this job has expired, please see similar jobs below
Cyber Security and Privacy - Manager
New York City
CohnReznick currently has an exciting career opportunity in the Advisory team located in our New York office. We are looking for a Manager with technology risk and compliance experience to join our team.
If you are:
• A highly dedicated professional with impressive credentials and driven by new challenges and growth opportunities
• A team player who believes in providing world-class client service and interested in becoming immersed in various industries
• Looking for a work environment that values and promotes camaraderie, collaboration and giving back to the community
Look ahead. Imagine more. And consider joining the CohnReznick team.
We offer:
• Endless opportunities to contribute to the 11th largest professional services firm in the US
• A unique culture that values collaboration in everything we do
• A team of professionals driven by a sense of excellence, integrity, commitment to lifelong learning, respect for one another, adaptability, and making a difference
• A network of 2,700 professionals committed to a diverse and inclusive workplace and giving back to the communities in which we live and work
• Varied career paths supported by strong professional development programs and resources
• A flexible work environment with competitive benefits
Our Advisory Practice has an opportunity available for an experienced Manager in our Advisory Practice/ Cyber Security/Technology Risk located in New York, with a focus in information security, cybersecurity, and information technology risk management and compliance. This is a national practice that reports to the Managing Director of Cybersecurity.
The position provides an opportunity to work collaboratively and integrate with the broader CohnReznick team in delivering the highest quality service to our clients; interact directly with our clients on a regular basis to better understand and serve their needs; grow and develop your career with support and mentoring from experienced professionals in the accounting, auditing, and tax areas of the Firm, as well as through your regular participation in internal and external Continuing Professional Education programs.
• Vulnerability Assessment and Management
• Penetration Testing
• Security Strategy Assessment and Management
• Infrastructure & Operations Security and Risk Management
• Privacy & Data Protection
• Use and compliance with frameworks and regulations such as CobIT, NIST (800-53, cybersecurity), ISO, ITIL, OWASP, PCI, FISMA, GLBA, HIPAA, MA201CMR, and other data privacy and security standards and regulations.
Required Professional Skills and Experience
• Motivated, team player with a positive attitude, solid interpersonal skills and ability to take ownership within their area
• Ability to work in a fast-paced, demanding environment
• Excellent organizational skills and strong attention to detail
• Ability to prioritize duties based on shifting demands
• Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments
• Strong analytical and problem-solving skills
• Excellent verbal and written communication skills
• Actively participate in client discussions, meetings, and business development opportunities
• Produce high-quality deliverables, reports, and presentations for client management and technology personnel
• Obtain and leads client engagements and projects
• Ability to manage a team and multiple simultaneous engagements
• Designing assessment and audit plans to evaluate IT controls, identify weaknesses and opportunities, and provide thoughtful and creative recommendations to clients
• Demonstrated track record assisting clients with identifying and assessing information system related risks and defining best practices as a trusted advisor
• Seven or more years of experience of hands-on strong technical skills with the following:
◦ Security strategy assessment and design
◦ Hands-on performance and management of vulnerability assessment and attack and penetration testing engagements through the use of security assessment tools (Nessus, NMap, Wireshark, Metasploit, Backtrack, Retina, Qualys, GFI LanGuard,NetStumbler, Aircrack, Nikto, Burbsuite, SQLMap, etc.)
◦ Social Engineering assessments
◦ Advanced security auditing
◦ Firewalls, VPNs, and network device configuration and security assessment
◦ Operating System/host (Windows, Unix, Linux, AIX, Solaris, MAC OS, etc). security
◦ Application & Database security assessment
◦ IT policy and procedure development
◦ Incident response and incident management
◦ SIEM, IDS/IPS implementation and configuration
◦ Packet capture and analysis, forensics,
◦ Anti-virus/malware, protection, detection and analysis
◦ Business Continuity and Disaster Recovery planning
Technology Experience
• Hands-on engagement experience utilizing security assessment tools such as Nessus, Metasploit, Backtrack, Retina, Qualys, Wireshark, ISS
• Security Information and Event Management (SIEM) technologies such as ArcSight, QRadar, Log Rhythm, netForensics, Symantec, Splunk, LogLogic, etc.
• IDS/IPS logging and monitoring
• Hands on experience with firewall and router configuration, switches, secure network architecture, IPSEC, SSL, SSH, VPN, TACACS/Radius, WAN, WAP, SMTP, FTP
• VM Ware, Hyper-V, XenServer and other hypervisor/virtualization technologies
Education - BS Degree in Management Information Systems; MS or MBA a plus
One or more certifications preferred, i.e. CISSP, CEH, GIAC, GSEC, MCSE
CohnReznick is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
#LI-BF1