Marsh & Mclennan Companies Hoboken , NJ 07030
As a key member of the Global Information Security Assessment and Incident Response team, the Cyber Security Risk specialist is principally responsible for ensuring the global organization consistently adheres to its technology security policies and best practices through the implementation and use of sophisticated technical security risk assessment tools and methods. The Cyber Security Risk Specialist works closely with a wide range of audiences, to include CIOs, CROs, Global Compliance Officers, the CISO and various technical teams from Legal and HR to IT experts to assess and ensure superior security controls remain effective at protecting millions in revenue generating capability.
The role blends a unique highly technical skillset in Information Technology and Information Security with outstanding business acumen and communication skills in order to understand and convey complex Information Security concepts and solutions globally and at all levels in the organization. The role must use advanced critical thinking and problem solving methods to operate flawlessly in high-pressure situations to protect the firm from advanced persistent threats and proactively identify probable risk areas across the business applications and systems to thwart active attacks
Globally identify, document, measure and communicate technical Information Security Risks across the organizations data networks, systems, and applications using standard company toolsets and assessment processes to identify significant risk and attack surfaces which threaten the firms revenue generating capabilities. Build enhanced risk assessment methodologies to effectively communicate technical attack threats to executive level business leaders in business terms.
Monitor and research industry information sources for zero-day threats and emerging Information Security trends and vulnerabilities impacting the organization and its ability to serve its customers. Recommend, direct, and implement best in class technology and business process solutions to mitigate and reduce threat globally. Influence technical and strategic direction of the Information Security function as it relates to keeping information secure and available for all MMC clients and staff.
Strong knowledge across a wide range of technical information security disciplines and solutions e.g. firewalls, VPN, PKI, network and host IDS/IPS, vulnerability & risk assessment tools and methods, penetration testing, encryption, malware identification, containment and prevention, e-mail security, active directory and group policies, two-factor authentication, common Windows (desktop & server) OS, OSX, various UNIX/Linux platforms, TCP/IP, SIEM and other common security tool sets are required.
Significant experience operating commercial and open-source computer forensics tools (e.g. Encase, FTK), ability to use command line tools and write simple scripts as needed to remotely analyze systems to harvest user activity, malware identification, etc. Demonstrate understanding of common vulnerabilities and threats affecting widely deployed software and methods to identify and remediate such issues.
Understanding and awareness of common computer forensic techniques, proper evidence handling, etc.
Must be results focused -- an expert problem solver with a strong desire to constantly research and master new concepts, technologies and solutions related to Information Security quickly and apply to ongoing tasks and deliverables.
Must have meaningful experience conducting, supporting, or managing computer forensics investigations, computer incident response activities, and malware analysis.
Must demonstrate excellent written and verbal communication skills. Must be able to effectively lead meetings and conference calls involving IT, legal/HR, and/or client contacts and write security incident and investigative reports.
Must be a self-starter, able to work under pressure and with limited supervision both individually and with other team members. Must be able to work well with others in a globally and culturally diverse environment. Must be able to successfully prioritize and manage to completion multiple complex tasks and deliverables. Must be able to speak clearly to conduct teleconferences.
Must possess and demonstrate the highest degrees of integrity and accountability in all actions. Must be highly dependable and available on-call outside normal business hours as needed in response to critical security incidents and other events. Must be available for occasional travel ( 10%)
Related industry certifications a plus such as GCIH, GCFA, GCFE, or EnCETeh.
4-year college) B.S. or B.A. Degree, Computer Science or relevant field.
Minimum 10 years of combined incident, forensic, cyber risk and threat management experience required Skills : Firewalls, VPN, PKI, Network And Host IDS/IPS, Vulnerability & Risk Assessment Tools, Penetration Testing, Encryption, Malware Identification, Containment And Prevention, E-mail Security, Active Directory And Group Policies, Two-factor Authentication, GCIH, GCFA, GCFE, Or EnCETeh.