Job Summary: 

• Investigate employee concerns regarding security threats
• Provide subject matter expertise in information security as it relates to networks and systems
• Manage cyber threat analysis activities, create and present reports and metrics surrounding threat analysis
• Manage information security awareness training programs for all employees, contractors, and approved system users
• Assist with the development and/or implementation of security technologies, services, policies, and guidelines
• Assist with the information security risk assessment process
• Assists in the process for incident management to effectively identify, respond, contain, and communicate a suspected or confirmed incident, and keeps the CIO informed.
• Maintain a current understanding of the threat landscape for the industry
• Assists with the development of the IS security roadmap that will enforce the firm’s security priorities

Skills on Resume: 

• Threat Investigation (Hard Skills)
• Security Expertise (Hard Skills)
• Threat Analysis (Hard Skills)
• Awareness Training (Hard Skills)
• Security Implementation (Hard Skills)
• Risk Assessment (Hard Skills)
• Incident Management (Hard Skills)
• Threat Monitoring (Hard Skills)

Job Summary: 

• Identifying and providing an analysis of vulnerabilities of computer systems
• Real-time monitoring and analysis of security events from multiple sources
• Proposing measures for minimizing the risks of cybersecurity incidents
• Developing policies/procedures/standards of information security
• Identifying possible threats and vulnerabilities, implementing the appropriate procedure to neutralize the risks
• Investigate and do reports on security-related incidents
• Analyzing, testing, and deploying security solutions from vendors
• Developing internal security tools
• Contributing to control activities regarding system security
• Offering consultancy on security matters for other projects developed within the company
• Supervising and investigating new cybersecurity threats.

Skills on Resume: 

• Vulnerability Analysis (Hard Skills)
• Security Monitoring (Hard Skills)
• Risk Mitigation (Hard Skills)
• Policy Development (Hard Skills)
• Threat Identification (Hard Skills)
• Incident Reporting (Hard Skills)
• Solution Deployment (Hard Skills)
• Security Tooling (Hard Skills)

Job Summary: 

• Research and analyze technical documents to better understand the client's infrastructure and its associated policies and procedures
• Serve as a detailed notetaker during client meetings and provide summaries to project managers and clients
• Write and edit detailed reports, policies, plans, procedures, and PowerPoint decks
• Maintain and update client databases
• Assist with the execution and facilitation of in-person and virtual client events
• Assist in the conducting of threat and vulnerability assessments
• Assist in the conduct of risk assessments and improvement plans
• Actively problem-solve and develop creative solutions to meet team and client needs in an ever-changing world.

Skills on Resume: 

• Technical Research (Hard Skills)
• Meeting Documentation (Hard Skills)
• Report Writing (Hard Skills)
• Database Management (Hard Skills)
• Event Facilitation (Soft Skills)
• Threat Assessment (Hard Skills)
• Risk Assessment (Hard Skills)
• Creative Problem-solving (Soft Skills)

Job Summary: 

• Work with management and staff, third-party security consultants, and managed service providers to assess risks, establish priorities, conduct reviews, and implement solutions
• Work alongside the Information Security Architect on day-to-day tasks in managing the information security posture of the organization
• Design, implement, and operate information security best practices and procedures
• Develop and manage security and process documentation.
• Ensure that required security control initiatives are executed on schedule and in line with the Information Security program objectives
• Develop and manage metrics and reporting designed to measure Information Security program effectiveness and ensure compliance with the policies, compliance regulations, and industry best practices alongside the Information Security Architect and CIO
• Partner with training staff to develop and continually iterate on security awareness training curriculum
• Monitor the external threat environment to ensure it is responsive to near-term and long-term threats
• Respond to and resolve cybersecurity threats that may impact the confidentiality, integrity, or availability of systems and affect constituents or personnel
• Center principles of equity, inclusion, and belonging in all work, embedding the values in program development, policy application, and organizational practices and processes
• Commitment to work collaboratively and respectfully toward resolving obstacles and/or conflicts

Skills on Resume: 

• Risk Assessment (Hard Skills)
• Security Operations (Hard Skills)
• Best Practices (Hard Skills)
• Process Documentation (Hard Skills)
• Control Execution (Hard Skills)
• Security Metrics (Hard Skills)
• Awareness Training (Hard Skills)
• Threat Response (Hard Skills)

Job Summary: 

• Provide a bullet point list of the responsibilities and duties of this job.
• Perform penetration tests on computer systems, networks, and applications, including critical environments.
• Create new testing methods to identify vulnerabilities.
• Pinpoint methods and entry points that attackers may use to exploit vulnerabilities or weaknesses.
• Search for weaknesses in common software, web applications, and proprietary systems.
• Research, evaluate, document, and discuss findings with IT teams and management.
• Review and provide feedback for information security fixes.
• Establish improvements for existing security services, including hardware, software, policies, and procedures.
• Identify areas where improvement in security education and awareness for users.
• Ensure sensitivity to corporate considerations when performing testing (i.e, minimize downtime and loss of employee productivity).
• Stay updated on the latest malware and security threats.
• Evaluate threat actors and generate profiles at the executive and technical levels.

Skills on Resume: 

• Penetration Testing (Hard Skills)
• Vulnerability Discovery (Hard Skills)
• Exploit Analysis (Hard Skills)
• Software Assessment (Hard Skills)
• Findings Reporting (Hard Skills)
• Security Review (Hard Skills)
• Service Improvement (Hard Skills)
• Threat Profiling (Hard Skills)

Job Summary: 

• Participate in vendor security assessments to ensure vendors meet internal information security requirements and help monitor them
• Participate in client security assessments and audits, ensuring that internal information security requirements satisfy client needs.
• Help set up and run quarterly phishing campaigns and security initiatives
• Ensure deadlines, timelines, and set processes are managed and met throughout the year.
• Work with Regional Security Leads to ensure that cross-region activities are followed through and completed
• Collaborate with Service Line organizations and Legal in reviewing specialized training needs and requirements that are documented.
• Work to ensure that all GISO penetration tests are actioned on and remediation plans are enabled
• Work with and manage the security service desk L4 concerns
• Initiate and shepherd swift remediation action to resolve issues.
• Capture information risk metrics into a central repository, analyze the metrics, and ensure they are meaningful and tell the true story of the GISO operations
• Determine, measure, and agree on actions to ensure that the C&W GISO is recognized as a world leader and innovative in its methods

Skills on Resume: 

• Vendor Assessment (Hard Skills)
• Client Auditing (Hard Skills)
• Phishing Management (Hard Skills)
• Process Coordination (Soft Skills)
• Cross-region Collaboration (Soft Skills)
• Training Review (Hard Skills)
• Remediation Management (Hard Skills)
• Risk Metrics (Hard Skills)

Job Summary: 

• Attacks, intrusions, and unusual, unauthorized, or illegal activity
• Identity and access management, including monitoring for abuse of permissions by authorized system users
• Investigate security alerts, prioritize issues, and provide incident response
• Perform threat investigation, isolation, and response
• Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
• Give advice and guidance to end-users on security-related issues such as spam and unwanted or malicious emails.
• Keep up to date with the latest security and technology developments
• Provide guidance in defining access rights and privileges.

Skills on Resume: 

• Threat Monitoring (Hard Skills)
• Access Management (Hard Skills)
• Incident Response (Hard Skills)
• Threat Isolation (Hard Skills)
• Analytics Utilization (Hard Skills)
• User Guidance (Soft Skills)
• Security Awareness (Soft Skills)
• Access Governance (Hard Skills)