Principal Consultant - Security Consultant Job at NYSTEC, Albany, NY

TjcxUzE5cDk0N2V5SUthSDgxd0EwQVhCNGc9PQ==
  • NYSTEC
  • Albany, NY

Job Description

About Us:

NYSTEC is a nonprofit technology consulting company, advising agencies, organizations, institutions, and businesses since 1996. We’re independent and vendor-neutral, so we have our clients’ best interests at heart. At NYSTEC, we know that we succeed when individuals and teams flourish personally and professionally, so our benefits and perks support that mindset.

About the Role:

As a security consultant in the Cybersecurity and Data Privacy Practice, you will collaborate with team members to conceptualize, deliver, and support our clients through today’s ever-changing cybersecurity landscape. NYSTEC is considered a trusted advisor, partner of choice, and employer of choice. We believe that every interaction is an opportunity to deliver exceptional service that empowers client success!

Serving as a security consultant, your day-to-day role will include supporting an operational technology/industrial control systems (OT/ICS) and supervisory control and data acquisition (SCADA) security program. This may include performing security compliance assessments, primarily related to OT/ICS and SCADA systems, as well as National Institute of Standards and Technology (NIST) 800-53 and NIST 800-82 compliance assessments. The successful candidate will have a demonstrated desire to learn and acquire new skills.

Key Responsibilities

  • Organize project work into client presentations outlining findings and recommendations.
  • Participate in internal, public (conferences), and client-facing meetings.
  • Prepare reports and presentations.
  • When necessary, assume full responsibility and accountability for executing projects or programs, including defining project roles and responsibilities, conducting project planning and tracking activities, and communicating project status upward and to client project managers.
  • Proactively share information that will make colleagues and clients more successful.
  • Provide feedback to management on team member performance.
  • Mentor and lead colleagues.
  • Champion the NYSTEC behaviors.

About You:

Required Qualifications

  • Training and/or experience with OT/ICS and SCADA systems.
  • Knowledge of ICS/OT, SCADA vulnerability analysis, and risk management.
  • Knowledge and awareness of critical infrastructure risks and mitigation best practices.
  • Experience with any of the following ICS/OT security compliance frameworks:
  • Cybersecurity Capability Maturity Model (C2M2).
  • U.S. Department of Homeland Security Cross-Sector Cybersecurity Performance Goals (DHS CPG).
  • North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP).
  • National Institute of Standards and Technology Cybersecurity Framework (NIST CSF).
  • SANS ICS Five Critical Controls.
  • NIST 800-82 Guide to Operational Technology (OT) Security.
  • European Union Agency for Cybersecurity Guide to Protecting Industrial Control Systems (EU).
  • International Society of Automation/International Electrotechnical Commission 62443 (ISA/IEC 62443).
  • Skills across multiple cybersecurity domains and the assessment of risk.
  • Ability to understand the root causes of vulnerabilities and to articulate those in written and verbal communications to clients.
  • Knowledge of and experience with the implementation and validation of security controls and security governance.
  • Experience with NIST 800-30 style risk assessments and organizational cybersecurity maturity assessments.
  • Ability to participate and collaborate in the business development and sales process by assisting with project proposals, presentations, and new client activities.
  • Willingness to seek knowledge and expertise through professional development within your specialty and to follow up with action to improve quality and establish best practices.
  • Ability to foster strong relationships with clients.

Desired Qualifications

  • Experience with OT/ICS security compliance assessments.
  • Certifications and/or experience specific to OT/ICS security controls and risk management.
  • Certified information systems security professional (CISSP) certification, or equivalent.

Education and Experience

  • A bachelor’s degree in cybersecurity or a related field of study and eight years of relevant experience. An equivalent combination of advanced education, training, and experience will be considered.

It is NYSTEC's policy to provide equal employment opportunity (EEO) to all individuals, regardless of actual or perceived race, color, creed, religion, sex, or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), age, national origin, ancestry, citizenship status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, military service and veteran status, sexual orientation, marital status, or any other characteristic protected by local, state, or federal laws and ordinances. NYSTEC is strongly committed to this policy and believes in the concept and spirit of the law.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact [email protected] if you require a reasonable accommodation to apply for or to perform this job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

Applicants must be authorized to work in the United States without the need for visa sponsorship now or in the future.

Learn more about NYSTEC by visiting www.nystec.com.

Job Tags

Local area, Visa sponsorship,

Similar Jobs

Alro Steel Corporation

2nd Shift Press Brake Operator Job at Alro Steel Corporation

 ...Alro Steel is currently seeking a 2nd Shift Press Brake Operator to join our team in Sedalia, MO . Join the Alro team and start building your tomorrow! Whether you are a recent graduate or an experienced professional, Alro offers rewarding and challenging... 

The H&K Group

Welder Job at The H&K Group

 ...Tracks progress and communicates with supervisors in the event of an unscheduled repair requirement that would lead to the loss of production that would otherwise be completed as scheduled. Suggest changes in working conditions and use of equipment to increase... 

St. Joseph County, IN

Day Reporting Probation Officer Job at St. Joseph County, IN

 ...This position is full-time, non-exempt, and is covered under the Saint Joseph Probate Court Employee Policy Manual. Incumbent serves as Probation Officer for St. Joseph Probate Court, responsible for conducting preliminary inquiries, pre-disposition investigations with... 

Champion Technology Services, Inc.

Project Manager Job at Champion Technology Services, Inc.

 ...The Project Manager ensures successful completion of both company and client objectives at the project level. The main focus of the Project Manager is to lead engineers and technicians on projects to assure profitability, quality of design, development, installation and... 

Meison

Assistant Fashion Designer Job at Meison

 ...Kasper. We focus on elevated, timeless workwear and fashions that are easy to mix-and-match and designed to help build an effortless and reusable wardrobe....  ...Bloomingdales and Dillards. Position Summary: The Assistant Fashion Designer will assist designers to interpret...