Presidio Principal Security Consultant, Cyber (REMOTE) in New York, New York
A Principal Security Consultant has a deep level of expertise and vast knowledge base in core technical testing domains in order to successfully lead project activities assess and consult with internal and external customers and deliver high-quality products. You are analytical, innovative, possess a strong sense of attention to detail, and able to demonstrate strong written and oral communication skills. You present complex solutions and topics in a concise manner. You are comfortable blending multiple services lines and offerings into one harmonious deliverable and executive presentation for audiences of all levels and skillsets.
The Principal Security Consultant will help conduct security assessments for clients across the United States. You will have subject matter expertise in one of the key areas of technical testing. Primarily, this will be a focus on web application testing or penetration testing but this work could also involve performing external and internal vulnerability assessments, wireless assessments, and other security testing activities. This role will also assist in the refinement and development of the methodologies and tools used by the Presidio Cyber Security team.
Lead large security engagements in concert with other Presidio teams.
Perform web application testing across various web application platforms
Perform black-box, gray-box, and other variants of internal and external penetration testing
Lead technically-focused projects with assistance of Engagement Managers
Perform assessment activities for external, internal, social engineering, wireless, etc. projects
Provide clear and professional reporting of assessment results to clients
Develop standards and methodologies within the Cyber Security Division
Review key factors, including inherent risk, mitigating controls, business impact, likelihood and other key elements to determine security risk.
Work with other Principal Security Consultants in a collaborative setting to support and assist on the execution and delivery of key services such as documentation review, and security consulting services.
Assist Delivery Practice Leads in cybersecurity administrative functions, such as documentation maintenance, documentation creation, peer review, and other cyber security
We seek a Bachelor’s Degree in Information Security or a related discipline or the equivalent work experience and/or military experience.
We seek a minimum of 5-7 years experience conducting penetration tests, web application assessments, or other high-level technical testing.
Deep knowledge of testing OWASP Top 10
Substantial experience with security tools such as Burp Suite, Nessus, Nmap, Metasploit, etc.
Deep knowledge of common vulnerabilities and exploits, hacker methodologies, and tactics
Programming/scripting skills preferred (Python, PowerShell, Bash, etc.)
Working knowledge of the TCP/IP protocol suite, TCP/IP headers and packets, the OSI model, and commonly used TCP/UDP ports and associated services
Working knowledge of routing protocols, switching, firewall configuration, and security best practices, etc.
Working knowledge of common OS and domain structures (Red Hat Linux, Oracle/Sun, Windows, Active Directory, etc.), servers, services, and associated vulnerabilities
Ability to manage multiple tasks and responsibilities, work independently or in small teams, achieve established goals and objectives, and communicate progress in a timely and meaningful manner.
You have the ability to travel on short notice
Required Soft Skills:
Demonstrate ownership of projects and tasks, coupled with a sense of urgency in completing assign activities.
Strong cross-functional team participant and collaborative approach to problem-solving.
Manage and guide engagement members to engagement completion.
Strong verbal and written communication skills, organizational skills, and attention to detail
Strong presentation skills
Ability to maintain composure and professionalism in an interrupt-driven environment
Ability to manage multiple and changing priorities and tasks.
Current information security certifications such as OSCP, 600-level SANS courses, and CISSP are preferred.
Experience with project deliverables from a VAR/Integrator experience
Prior experience working closely with customers and collaborating with IT staff
Ability to be flexible and embrace change
Self-motivated and self-directed.
Self-starter with the ability to manage their own tasks into a larger project or program effort
Presidio is a leading North American IT solutions provider focused on Digital Infrastructure, Cloud and Security solutions to create agile, secure infrastructure platforms for its customers. We deliver this technology expertise through a full life cycle model of professional, managed, and support services including strategy, consulting, implementation and design. By taking the time to deeply understand how our clients define success, we help them harness technology advances, simplify IT complexity and optimize their environments today while enabling future applications, user experiences, and revenue models. As of June 30, 2019, we serve approximately 7,900 middle-market, large, and government organizations across a diverse range of industries. Approximately 2,900 Presidio professionals, including more than 1,600 technical engineers, are based in 60+ offices across the United States in a unique, local delivery model combined with the national scale of a $3.0 billion dollar industry leader. We are passionate about driving results for our clients and delivering the highest quality of service in the industry. For more information visit: .
Our comprehensive security risk methodology gives customers the ability to safeguard their environments and critical business data. This includes continuous threat protection and risk mitigation through the Presidio Cyber Risk Management program, a next generation approach that integrates security strategy, assessments, architecture and remediation, and aligns all of these with organizational goals.
Presidio Cyber Risk Management provides clients with a holistic approach for effective security policies and procedures, risk assessment and management, regulatory compliance, incident response, and education and awareness. We use an established risk management methodology and proprietary risk scoring process to provide the IT leader and board of directors with an ongoing view of their organization’s risk exposure and remediation path.
Presidio is an Equal Opportunity / Affirmative Action Employer / VEVRAA Federal Contractor. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, sexual orientation, gender identification or any other characteristic protected by applicable federal, state and local statutes, regulations and ordinances.
To read more about discrimination protections under Federal Law, please visit: https://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf (Get Acrobat Reader)
If you have any difficulty using our online system and need an accommodation in the job application process due to a disability, please send an email to firstname.lastname@example.org for assistance.
Presidio is a VEVRAA Federal Contractor requesting priority referrals of protected veterans for its openings. State Employment Services, please provide priority referrals to email@example.com.
RECRUITMENT AGENCIES PLEASE NOTE:
Agencies Please Note: Agencies may not submit any unsolicited candidate information to any employee of Presidio. Any candidate information received by any employee of Presidio will be considered property of Presidio, unless the submitting agency is an Authorized Vendor who has received a written request to perform recruiting services from a member of Presidio’s Talent Acquisition staff. No other Presidio staff member shall be authorized to engage an agency to perform recruiting services. Authorized Vendors have entered into written contracts with Presidio that have been reviewed and executed by the Vice President of Talent Acquisition. Payments will not be made to any agency who is not an Authorized Vendor (nor will they be made to any agency for performing unauthorized services).
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
Presidio, Inc. is an Equal Opportunity/Affirmative Action Employer/ VEVRAA Federal Contractor. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, or any other characteristic protected by applicable federal, state and local statutes, regulations and ordinances.