Principal Information Security Consultant (Remote - Central Region, US)

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Mandiant Security Consulting Services ensures the long-term success of our clients by providing talented, passionate, and specialized security expertise. Our Consultants partner with Mandiant clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Mandiant Incident Response, Intelligence and Managed Defense practices, we are able to develop defense forward information security programs for our clients.

As an Information Security Consultant, you will be responsible for helping our clients assess, design and build effective security programs. As an established trusted advisor, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security posture. This is an opportunity for you to showcase your strong communication skills and experience in security governance, security risk management, security operations, security architecture, and/or cyber incident response programs. This is a regional specific role which must be based out of the central region of the U.S.

What You Will Do:

• Provide guidance on building and/or maturing information security programs and the implementation of tools and technologies used for enterprise security
• Evaluate client needs, coordinate design for a solution, and clearly communicate the value proposition of complex and highly technical subjects
• Implement and/or assess existing security controls
• Provide knowledge of tools and technologies used for enterprise security
• Interface with clients to address concerns, issues or escalations; track and drive to closure any issues that impact the service and its value to clients

Minimum Requirements:

• 7+ years experience in professional information security domains
• Basic knowledge of tools used in penetration testing, security event analysis, incident response, computer forensics, network and endpoint architecture, malware analysis or other areas of security operations
• Basic understanding of security frameworks, such as ISO 27001, NIST 800-53, HIPAA/HITECH, or PCI DSS Fundamental understanding of networking, including TCP/IP protocols and network topology
• Fundamental understanding of operating systems, including Windows, Linux, and OSX
• Basic understanding of security controls for common platforms and devices, including Windows, Linux, OSX and network equipment
• Basic understanding of the components that comprise a successful information security program
• Ability to travel up to 50% (when travel resumes)

Desired Qualifications:

• Must be eligible to work in the U.S. without sponsorship
• Ability to successfully interface with clients and manage expectations
• Ability to document and explain technical details in a clear and concise manner

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is a regionally-based role that must be located in the Central Region of the US.