Data loss prevention within Google and Microsoft and other environments
Web application vulnerability assessment and remediation
Secure remote access and VPN
NIST assessment and recommendations
Security Incident and Event Management (SIEM)
Managed Security Operations Center services
Incident response plan design and testing
Firewall tuning
Internal and external penetration testing
Ransomware prevention
Examples of Duties:
Plan and execute complex and specialized cybersecurity initiatives, coordinating the activities of contractors, vendors, and staff, and reporting status to the CTO
Develop cybersecurity policies, procedures, standards, playbooks, trainings, and notices
Implement new cybersecurity controls in alignment with NIST and CISA frameworks
Research, recommend and implement security technologies such as VPN, IDS/IPS, SIEM/SOAR, etc.
Provide operational support for existing security technologies
Lead and coordinate incident response activities
Perform cybersecurity risk assessments
Facilitate team meetings, project status updates, training sessions and other events
Provide cybersecurity and IT security subject matter advice, findings, and recommendations to CTO and other executives
Collaborate with technical team members and clients on cybersecurity consultations
Coordinate third party risk assessments and recommendations
Assess Business Continuity preparedness and coordinate tabletop planning exercises
Perform gap assessments of application/system disaster recovery plans