Job#: 2052759

Job Description:

SENIOR LEAD CONSULTANT (SR. SECURITY ADVISOR)
WHO WE ARE
Apex Systems is a leading global technology services firm that incorporates industry insights and experience to deliver solutions that fulfill our clients' digital visions. We provide a continuum of services, including strategy and enablement, innovation and productivity, and technology foundations to drive better results and bring more value to our clients.?Apex transforms our customers with modern enterprise solutions tailored to the industries we serve. Apex has a presence in over 70 markets across North America, Europe, and India. Apex is a part of the Commercial Segment of ASGN Incorporated (NYSE: ASGN). To learn more, visitwww.apexsystems.com.
At Apex Systems, we prioritize professional development, work-life balance, and fostering a collaborative culture. We value our teams well-being and recognize the importance of building strong relationships. Thats why we organize regular team-building events and philanthropic days to give back to the community - fostering a sense of purpose and fulfillment among our team. Join us for career advancement, innovative solutions, and a supportive environment focused on your success.
JOB DESCRIPTION
Apex is seeking a dynamic Senior Lead Consultant with strong consultative skills to serve as a Sr. Security Advisor within US & Canada practice as part of Apex Systems Solutions Delivery Organization. This role will serve on project teams with Apex clients to assess, design, and implement secure technologies and services. This role will also provide technical subject matter expertise for Apex sales and account teams during the scoping of new security opportunities.

RESPONSIBLITIES

• Provide our clients strategic support, architect and implement security controls, recommendations, policies, and standards
• Use common security standards and frameworks such as NIST, PCI DSS, HIPAA, ISO/IEC, etc.
• Advise senior leadership and key stakeholders on strategic security matters to align security programs with business objectives
• Provide subject matter expertise on securing cloud architecture and infrastructure based on industry and vendor best practices within AWS, Azure, and GCP.
• Assess and understand our client's current security posture and future architecture, providing a viable solution path to bridge the gap, both strategical and tactical
• Lead security technology evaluation and selection processes to obtain necessary tools and systems
• Advise on proper configuration and maintenance of security tools and systems
• Develop functional and design specifications for client work products
• Advise legal/compliance teams and assist with security investigations and litigation
• Represent information security needs in IT project management and new system implementations
• Create and deliver reports, metrics, and dashboards on program effectiveness for executives
• Develop security architectures and roadmaps to strengthen customer's defenses
• Stay attuned to customer business needs and objectives to align security priorities and requirements
• Implement all various aspects of digital asset protection including Infrastructure, Cloud, Applications and Data
• Manage and act as lead for delivery team to meet our client's security goals
• Design and evaluate security tools with an emphasis on automation to assist our clients, including and not limited to asset management, identity and access management, cloud logging/monitoring, threat and vulnerability management, platform hardening, resiliency and redundancy, data security, and security infrastructure.
• Review new cloud technologies and products for security implications and risks for our clients
• Maintaining awareness of trends and changes in the Cybersecurity industry and threat landscape
• As technical subject matter expert, assist Apex solution, sales, and account teams during the scoping of new security opportunities.

JOB REQUIREMENTS

• 10+ years hands-on experience in development, deployment, and automation of security solutions in large enterprise environments including experience in cloud platforms (ie. AWS, GCP, and/ or Azure)
• Experience using security frameworks to perform gap assessments between different cloud providers, cloud type, and level of certifications in the context of compliance efforts
• Experience creating a cloud security roadmap with estimates for complexity and cost; including people, process, & technology inputs
• Experience managing a backlog and delivery team of technical and non-technical professionals
• Familiar with distributed systems, networking, and database fundamentals
• Excellent written and verbal communications skills and an ability to maintain a high degree of professionalism in all client communications
• Ability to influence others, build relationships, and manage conflicts
• Highly motivated, consultative, problem solving mindset
• Leadership experience and executive level communication and facilitation skills across technical and non-technical stakeholders
• Experience with brief management, as needed, on the status of action items and/or results of these activities
• Bachelor's degree in Information Security, Information Technology, Information Systems Management, Computer Science, Engineering, or related field
• Vendor, technical, and non-technical certifications (e.g., CEH, GEVA, GPEN, OSCP, RSA, SANS, ISC2 and information security solution vendor partners)

• In-depth knowledge of information security principles, technologies and best practices.
• Experience with security frameworks like CIS Controls, ISO/IEC 2700x, MITRE ATT&CK, NIST Cybersecurity Framework, etc.
• Knowledge of regulatory compliance - PCI DSS, HIPAA, SOX, GDPR etc.
• Knowledge of threat modeling, risk assessments, and security audits and ability to identify vulnerabilities and mitigate risks.

• Technical expertise with security tools and technologies like firewalls, VPNs, IDS/IPS, SIEM, DLP, encryption, access controls, vulnerability management, etc.
• Experience with security monitoring, incident response and knowledge of cyber threats and attack vectors.
• Experience with compliance audits and standards.
• Understanding of secure software development practices and experience with code reviews/audits.
• Knowledge of cloud security best practices for AWS, Azure, and/or GCP

• Experience or strong understanding of data security such as encryption, key management, tokenization, etc.
• Experience with security monitoring tools - Security Information & Event Management (SIEM), user behavior analytics, network traffic analysis, etc.
• Knowledge of application security concepts - secure SDLC, static/dynamic analysis, web app scanning, fuzzing, pen testing, etc.
• Experience with identity security such as access and privilege management solutions - LDAP, AD, SSO, MFA, IAM (e.g, SailPoint, Saviynt), PAM (e.g. CyberArk), etc.
• Knowledge of security awareness training, phishing simulations, social engineering and physical security principles.
• Experience with managing the overall success of information security programs.
• Ability to liaise with legal/compliance teams regarding security regulations and legal obligations.
• Experience in developing information security policies, standards and procedures.
• Excellent communication skills, including demonstrated proficiency in clearly communicating technical concepts to non-technical audiences in business terminology

OUR AWESOME BENEFITS:

• Competitive salary
• Health, Dental and Vision Insurance
• Long and Short-Term Disability
• Life Insurance
• Vacation and Holiday Pay
• 401k Retirement Plan
• Training and Advancement opportunities
• Tuition Reimbursement
• Birthdays Off
• Philanthropic Opportunities
• Referral Program
• Partial Gym Membership Paid
• Team Building Events

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

VEVRAA Federal ContractorWe request Priority Protected Veteran & Disabled Referrals for all of our locations within the state.We are an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic. The EEO is the Law poster is available here.PDN-9d63647f-7ed6-4c51-8cdc-6bb60e479c1b