Job Description

Locations

• Iowa City, Iowa, United States

Salary

Skills Required

• Network Security Testingintermediate
• Application Security Testingintermediate
• IT Security Governanceintermediate
• Risk Managementintermediate
• Digital Forensicsintermediate
• Incident Responseintermediate
• Security Architectureintermediate
• DLP (Data Loss Prevention)intermediate
• SIEM (Security Information and Event Management)intermediate
• IDS/IPS (Intrusion Detection/Prevention Systems)intermediate
• PCI DSS (Payment Card Industry Data Security Standard)intermediate
• NERC/CIP (North American Electric Reliability Corporation Critical Infrastructure Protection)intermediate
• SOX (Sarbanes-Oxley Act)intermediate
• HIPAA/HITECH (Health Insurance Portability and Accountability Act/Health Information Technology for Economic and Clinical Health Act)intermediate
• FFIEC (Federal Financial Institutions Examination Council)intermediate
• EU Privacy Laws (GDPR)intermediate
• ISO 27001intermediate
• NIST 800 Seriesintermediate
• Business Developmentintermediate
• Client Relationship Managementintermediate
• Team Leadershipintermediate
• Training & Mentoringintermediate
• Strategic Planningintermediate
• Risk Assessmentintermediate
• Vulnerability Managementintermediate
• Penetration Testingintermediate
• Security Auditingintermediate
• Incident Handlingintermediate
• Threat Intelligenceintermediate

Required Qualifications

• Bachelor's degree in computer science or related field from an accredited college/university. (experience)
• Strong technical knowledge in network and application security testing. (experience)
• Experience in IT security governance and risk management. (experience)
• Knowledge of digital forensics and incident response. (experience)
• Familiarity with security architecture principles. (experience)
• Experience with deployment of security appliances (DLP, SIEM, IDS/IPS). (experience)
• In-depth knowledge of security and privacy regulations such as PCI, NERC/CIP, SOX, HIPAA/HITECH, FFIEC, EU Privacy Laws, ISO, and NIST 800 series. (experience)
• Experience in the financial services or financial institutions industry. (experience)
• Successful track record of building and growing a security and privacy practice. (experience)
• Proven ability to manage marketing campaigns for new or expanded security services. (experience)
• Excellent communication and presentation skills, both written and verbal. (experience)
• Ability to communicate complex technical issues to senior management. (experience)
• Experience identifying business opportunities and developing go-to-market strategies. (experience)
• Proven ability to meet revenue goals. (experience)
• Industry recognized security certifications (CISSP, CISM, CISA, etc.) (experience)

Responsibilities

• Continue building our security, privacy, and risk practice through expansion of team size and skill-sets.
• Provide oversight and training to managers and staff during the delivery of technical services to ensure quality delivery while allowing staff to learn and grow.
• Use proven business development skills to acquire additional clients and expand relationships with existing clients.
• Identify business opportunities and enhance go-to-market strategies.
• Communicate to clients regarding the strategic and tactical risks of advanced security threats, the methods malicious actors compromise such issues, and potential solutions that may prevent such incidents from occurring.
• Communicate complex technical issues to client senior management through the ability to transform such data into layman and executive style reports and presentations.
• Leverage industry and technical expertise to identify improvement opportunities for assigned clients and assist with the development of remediation services for identified findings.
• Ensure revenue goals are being met and client service offerings are responsive to the changing needs in the business environment.
• Develop and maintain strong client relationships through proactive communication and exceptional service delivery.
• Lead and participate in proposal development and presentations to prospective clients.
• Stay up-to-date with the latest security threats, vulnerabilities, and industry trends.
• Contribute to the development of thought leadership content, such as white papers, blog posts, and webinars.
• Mentor and coach team members to enhance their technical and professional skills.
• Participate in industry events and conferences to promote RSM's security services.
• Oversee the execution of security assessments, penetration tests, and vulnerability scans.
• Develop and implement security policies, standards, and procedures.
• Manage and oversee incident response activities.
• Conduct security awareness training for clients and internal staff.
• Ensure compliance with relevant security and privacy regulations.
• Oversee the development and delivery of security-related training programs.

Benefits

• general: Comprehensive health insurance plans (medical, dental, vision).
• general: Generous paid time off (PTO) policy.
• general: Paid holidays.
• general: 401(k) retirement plan with company match.
• general: Life insurance and disability coverage.
• general: Flexible spending accounts (FSA) or health savings accounts (HSA).
• general: Employee assistance program (EAP).
• general: Professional development opportunities.
• general: Tuition reimbursement program.
• general: Employee referral bonus program.
• general: Wellness programs and initiatives.
• general: Opportunities for advancement and growth within the company.
• general: A supportive and inclusive work environment.
• general: Employee recognition programs.
• general: Company-sponsored events and activities.
• general: Relocation assistance (if applicable).

Tags & Categories