Senior Cybersecurity Advisor

IT & Security Yarmouth, Maine


Description

Cybersecurity Advisors are the touchpoint of Tyler Cybersecurity’s service offerings, all focused exclusively on information and cyber security. The Tyler Cybersecurity Advisor must be able to address a client’s security requirements while remaining empathetic to their business environment. Strong communication skills, both verbal and written, are critical.

The Advisor is analytical, but capable of fluidly communicating to all organizational levels. Knowledge and experience related directly to information/cyber security and compliance challenges faced by regulated organizations is critical to provide in-depth analysis and sound guidance to our clients. Also critical is the ability to say, “I don’t know”, and follow-up with research to provide timely answers. Our Advisors are aware that learning is always part of the job, and they embrace opportunities to increase their knowledge.

Cybersecurity Advisors must be able to comfortably manage several ongoing client relationships, engaging in an impressive list of project offerings. A steadfast commitment to providing exemplary service to our clients is as important as experience, knowledge and skill. Tyler Cybersecurity earns our clients’ loyalty during every engagement.

Responsibilities 

  • Lead and/or participate in client Information Security and Risk Management advisory committees.
  • Build and refine client Risk Management Programs.
  • Conduct probing, incisive interviews with cross-departmental personnel at all organizational levels.
  • Perform a broad range of risk and compliance assessments.
  • Create, analyze, and support client Information Security and Incident Response Programs.
  • Develop and maintain Information Security Policies and Incident Response Plans, collaboratively with clients.
  • Lead Incident Response exercises.
  • Coordinate and support client Incident Response efforts.
  • Implement and manage third-party Service Provider Programs.
  • Lead client management through Business Impact Analysis exercises. Author and assess Business Continuity Plans. Participate in client Business Continuity exercises.
  • Identify key strengths and weaknesses in client security personnel, architecture, operations, and vendor relationships.
  • Provide Cybersecurity training and awareness presentations to all organizational levels.

Qualifications

  • Progressive career track including experience as an information security / cybersecurity professional working with financial institutions, health care entities, or similar level of responsibilities within division, business unit, etc. of a larger, regulated organization.
  • 5+ years direct experience, 8+ total career experience.
  • Knowledge of primary regulatory drivers such as: GLBA, PCI, FISMA, CMMC or HIPAA.
  • Knowledge of cybersecurity frameworks and standards such as NIST Cybersecurity Framework, CIS 20, FFIEC Cybersecurity Risk Assessment, NIST 800-30, NIST 800-53.
  • Ability to speak confidently on cybersecurity domains and lead dialog with executives and Board members as well as technical and operations personnel.
  • Excellent research, interviewing and writing skills.
  • Well organized, detail oriented, able to meet specific deadlines.
  • Flexibility with day-travel to regional clients, and infrequent overnight travel.
  • Positive attitude, strong approach to teamwork, and highly developed sense of humor.
  • Ability to say, “I don’t know, but I’ll find out”, when the occasion arises.

  • Additional Desired Skills:
    • Technical knowledge in the following areas:
    • Cloud Security (Azure/AWS)
    • Identity Security and Access Management
    • Security controls (firewall, NAC, IDS/IPS, Endpoint, Content filtering, SIEM, etc.)
    • Prior consulting experience preferred.
  • Education Requirements:
    • Bachelor’s Degree or higher.
    • Possess one or more cybersecurity professional certifications such as: CRISC, CISM, CISA or CISSP.