Consulting - Senior Associate – Technology Risk Advisory Job
Date: Apr 8, 2014
Location San Jose, CA, US
THIS IS AN EMPLOYEE POSITION
To provide the highest level of client service, McGladrey LLP has established the Technology Risk Advisory Services group, comprised of more than 100 professionals dedicated exclusively to serving the technology risk-related needs of our clients. This group includes experienced consultants located throughout the country to help clients select, improve, control, secure, manage and monitor systems to address their information needs and protect confidential data. By centralizing the highly skilled and specialized technology consulting personnel, we are able to provide our clients with the most knowledgeable resources available. We serve a diverse base of clients in a variety of industries, and understanding how technology impacts the operation and growth of organizations is what we do best.
This position will work independently and as part of a team to perform security assessments, including internal vulnerability assessments, internal penetration testing, wireless security assessments, social engineering, ISO27000 assessments, Payment Card Industry (PCI) assessments, Federal Information Security Management Act (FISMA) assessments and Health Insurance Portability and Accountability Act (HIPAA) assessments.
Responsibilities- Ability to conduct or lead multiple types of technology risk advisory engagements, including PCI, GLBA, HIPAA, FISMA, SOX, ISO, etc.- Expertise using commercial scanning tools to analyze systems for vulnerabilities, and provide risk reduction recommendations- Performing manual verification of vulnerabilities to reduce false positives- Understanding of common regulatory or standards-based control frameworks such as PCI-DSS, ISO 27001/2, NIST 800-53, etc.- Creating comprehensive security assessment reports- Interfacing with clients to gather information and investigate security controls- Maintaining industry credentials/certifications- Supporting ongoing development of security assessment service offeringsBasic Qualifications- Three to six years of recent information systems security experience performing security assessments- Certification(s) such as CISA, CISSP, OSCP, OSCE, QSA, GIAC (or the willingness to obtain within the near future)- Demonstrated knowledge of common network and host security vulnerabilities and standard remediation best practices- Ability to perform manual vulnerability verification techniques- Competency with network/application/database security, information security concepts and technologies- Prior experience working in an information security consulting role performing/leading PCI, GLBA, HIPAA, FISMA, SOX, ISO, etc. assessments- Excellent communication skills - must be able to effectively communicate verbally and in writing- Must be able to work with clients and self-manage through difficult situations- Effective time management, able to balance multiple concurrent projects- Ability to manage technical projects, including timelines and client relationships- Ability to work effectively both independently and on teams- Strong problem-solving skills and attention to detail- Ability to explain complex security concepts to technical and nontechnical audiences- Ability to interact and provide constructive security remediation guidance as well as provide business-oriented outlook and recommendations- Ability to travel overnight up to 60 percent, depending on client locationsPreferred Qualifications- Bachelor's or master's degrees in computer science, management information systems or information assurance (Valid work experience will also be considered.)- Financial institution, government contract and healthcare industry experience- Project management experience
You’re one of a kind. So is McGladrey. Imagine what we will achieve together.
You want your next step to be the right one. You've worked hard to get where you are today. And now you're ready to use your unique skills, talents and personality to achieve great things. McGladrey is a place where you are valued as an individual, mentored as a future leader, and recognized for your accomplishments and potential. Working directly with clients, key decision makers and business owners across various industries and geographies, you'll move quickly along the learning curve and our clients will benefit from your fresh perspective.
Experience McGladrey. Experience the power of being understood. ™
McGladrey is an equal opportunity/affirmative action employer. Minorities/Females/Disabled/Veterans.
Location Street Address: 100 W. San Fernando Street, Suite 460
City: San Jose
Region: West Region
Position Type: Full Time
Job Type: Experienced
Degree Required: Bachelor
Travel Required: Yes
Relocation Eligible: No
Sponsor candidates who are not eligible to work in US: No
Requisition ID: NWMC12017
Nearest Major Market: San Jose
Nearest Secondary Market: Palo Alto
Job Segment: Consultant, Consulting, Risk Management, Network, Contract, Finance, Technology