Practice Lead - Cyber Security - IT

Job Description

Roles and Responsibilities:

- The Cyber Security Practice Leader is responsible for defining, managing and delivering a comprehensive portfolio of cyber security services and setting the strategic direction for the development of this line of business.

- Develop an outstanding, high-performing team of professionals, which includes delivery consultants, architects and security domain experts and specialized testing, monitoring and maintenance personnel.

- Build relationships with end clients, translate their business problems into practical solutions, and drive the growth of the practice through account focus and service differentiation.

- Work with company leaders to develop long term vision, technology road map, and annual goals for the Cyber Security Practice. Build a distinguished portfolio of advanced cyber security services. Develop intellectual property, including methodologies, solutions, accelerators and tools to enable the practice to be recognized as a leader in the field of cyber security.

- Build strategic and collaborative ecosystem partnerships with leading product and services firms in the industry.

- Advance thought leadership in cyber security by being a part of a global committee of cyber security technology experts, speak at events, and consult as a subject matter expert on key projects and strategy/architecture issues. Lead one or more knowledge sharing communities.

- Regularly meet with Cyber Security technology experts and representatives of key sectors like insurance and financial services to keep abreast of current threats, information and prevention techniques.

Required Skills:

- Expertise in several of the following areas: information security management, identity and access management, privacy and data protection, application security, server security, and threat & vulnerability management. Basic understanding of security-relevant industry standards and practices, such as ISO 2700x series, COBIT, NIST, etc.

- Demonstrated knowledge of information security, computer forensics and data analysis; practices & procedures related to the investigation and response to network/computer intrusions and data theft. Experience in planning and implementing risk mitigation strategies relating to: data loss prevention, security incident and event management, identity and access management, role-based management, strong authentication, encryption, source code analysis, penetration testing, application and system hardening, firewall management and logical network segmentation.

- Proven experience in managing the complete delivery lifecycle of security engagements, right from the pre-sales stage starting with the identification of opportunities and initial scoping through to the final delivery and signoff. Should have also implemented programs to provide post-cutover maintenance and operations support.

- Must be willing to travel up to 30% - locally and internationally.

- Must possess adequate knowledge of industry best practices and tools like: Malware Analysis, Memory Analysis, HBGary Responder, Network Traffic Collection and Analysis and Sandboxing, EnCase, F-Response, FTK, Helix and Paraben.

- Relevant certifications including CISSP, CISA, CISM preferred.