Principal Information Security Consultant

Mandiant Security Consulting Services ensures the long-term success of our clients by providing talented, passionate, and specialized security expertise. Our Consultants partner with clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Mandiant Incident Response, Intelligence and Managed Defense practices, we are able to develop defense forward information security programs for our clients.

As a Principal Information Security Consultant, you will lead teams and projects and will be responsible for helping our clients assess, design and build effective security programs. As an established trusted advisor, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security posture. This is an opportunity for you to showcase your strong communication skills and experience in security governance, security risk management, security operations, security architecture, and/or cyber incident response programs.

What You Will Do:

• Lead large, client-facing projects while mentoring/training junior team members
• Provide guidance on building and/or maturing information security programs and the implementation of tools and technologies used for enterprise security
• Evaluate client needs, coordinate design for a solution, and clearly communicate the value proposition of complex and highly technical subjects
• Implement and/or assess existing security controls
• Provide knowledge of tools and technologies used for enterprise security
• Interface with clients to address concerns, issues or escalations; track and drive to closure any issues that impact the service and its value to clients

Minimum Requirements:

• 7+ years of information security, security program, security operations, or similar experience
• Experience with and understanding of tools used in penetration testing, security event analysis, incident response, computer forensics, network and endpoint architecture, malware analysis or other areas of security operations
• Experience working with security frameworks, such as ISO 27001, NIST 800-53, HIPAA/HITECH, or PCI DSS Fundamental understanding of networking, including TCP/IP protocols and network topology
• Experience with operating systems, including Windows, Linux, and OSX
• Experience with security controls for common platforms and devices, including Windows, Linux, OSX and network equipment
• 3+ years experience with the components that comprise a successful information security program
• Must be eligible to work in the U.S. without sponsorship

Desired Qualifications:

• Ability to travel up to 50%, when travel resumes
• Ability to successfully interface with clients and manage expectations
• Ability to document and explain technical details in a clear and concise manner

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is a regionally-based role for candidates that live within the central region of the United States.