Join our dedicated team in a role where your expertise in risk assessments and cybersecurity exercises propels forward our mission of safeguarding our operations and enhancing resiliency. This position offers the unique opportunity to shape our security posture and contribute to our continuous improvement in an environment that values innovation and teamwork.

As an Assessments & Exercises Senior Associate within our cybersecurity team, you will utilize industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. You will collaborate with the team to design and execute risk-promoten tests and simulations, evaluate preventative controls, incident response processes, and detection capabilities. Your ability to make informed decisions and foster continuous improvement will contribute to the achievement of our team's operational goals and the mitigation of cyber and resiliency risks.

Job responsibilities

Collaborate with other Assessments & Exercises team members to conduct testing and simulations – such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies to ensure alignment with industry standards and regulatory requirementsPartner with subject matter experts to evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluationDevelop comprehensive assessment reports, including detailed findings, risk assessments, and remediation recommendations, and effectively communicate these insights to relevant stakeholders as you contribute to decisions that yield continuous improvementUtilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy

Required qualifications, capabilities, and skills

Formal Training or Certification required on Cybersecurity or resiliency, assessments or simulation exercises and 3+ years applied experience.Prior experience in offensive or defensive technical cybersecurity roles, focusing on solutions to reduce cybersecurity risks.Basic coding (scripting) experience in languages such as Python, C, JavaScript, and VBScript.Demonstrated proactivity and resourcefulness in identifying and analyzing data sources for data-driven investigations.Knowledge or experience in cybersecurity roles and processes, including Incident Response, Threat Intelligence, Penetration Testing, and more.Familiarity with network architecture concepts, cloud architectures, and deploying large-scale applications in enterprise environments

 

Preferred Qualifications, Capabilities, and Skills

Familiar in developing both tactical and strategic tools and capabilities.Familiar in building analytical processes, templates, and documentation.Bachelor's Degree in Computer Science or a related field, or equivalent experience.