IT Security Consultant

Convergence Networks is one of North America’s leading managed service and managed security providers. We are a service company focused on helping clients leverage technology as a strategic tool and proactively protecting their business. We are fueled by providing outstanding service and sharing our passion for innovative technology as part of our integrated solutions.  

POSITION SUMMARY  

vCISOs are seen as the information security expert by our clients and have the opportunity to help design and lead their overall security posture into the future. vCISOs work with a myriad of different businesses that operate in varying industries, each of which ultimately rely on having a secure network as the foundation of their operations. vCISOs are responsible for assisting new and existing clients with establishing and maintaining their information security management programs to help ensure the confidentiality, integrity, and availability of their information technology systems, networks, and data. Through established Convergence Networks consulting processes and procedures, the vCISO assists with the direction and management of a client’s strategic, operational, and budgeting efforts. With the purpose of protecting their organization’s information assets, you will gain an understanding of the client’s business, the industry they operate in, and leverage that understanding to provide consulting and guidance to business leaders. 

WHAT WILL YOU DO AS A VCISO? 

• Assist client senior leadership in making informed technical and risk management decisions by providing subject matter expertise on a broad range of technologies, information security standards, risk management and compliance requirements.
• Establish strong relationships with clients as a foundation of trust and mutual respect between their organization and Convergence Networks.
• Visit client sites, establishing a regular onsite meeting rhythm with your client base.
• Provide confident consultation and solution proposals based upon a deep understanding of the customer’s business needs, existing IT system posture, adversity to risk, perceived pain-points, cultural influences, and financial/regulatory constraints.
• Assist customers with integration of information security into their business strategy, processes, and culture.
• Collaborate with clients to identify opportunities to improve risk posture, developing solutions for remediating or mitigating risks based upon the business objectives, financial constraints, regulatory requirements, and adversity to risk.
• Create, maintain, and grow strong professional relationships with the key stakeholders and decision makers within your customer base, allowing you to have otherwise difficult financial conversations regarding invoices, recurring contracts, conflicts with support staff, etc.
• Stay abreast of trends, advances, and solutions within the broader IT and IT security industries.
• Ongoing education and research on how new governmental legislation and compliance regulations affect client security policies, practices, and procedures.
• Provide recommendations on IT best practices and security awareness training for clients.
• Serve as a liaison to auditors, assessors and examiners.
• Strive to continuously increase the value proposition of our recurring monthly service agreements with existing customers.

WHAT SKILLS DO I NEED TO BE A SUCCESSFUL VCISO? 

• Excellent communications skills both verbally written. 
• IT management and support history, including a mix of strategic consultation and network administration.

• Working knowledge of networking technologies such as firewalls, routers, switches, firewall access controls, VPNs, perimeter security, network access controls, network monitoring software, end-point protection, data loss prevention, security information and event management.
• Strong working knowledge of security threats, vulnerabilities, and exploits, as well as safeguards to address them.
• IT project management experience.
• Outstanding knowledge and understanding of the three fundamental safeguard types – technical, administrative, and physical.
• Experience in cyber risk management and incident response planning.
• Knowledge of risk assessment procedures, role-based authorization methodologies, authentication technologies and security attack pathologies.
• Experience developing and authoring information security policies, standards, processes, procedures, and guidelines.
• Sound knowledge of identity & access management, vulnerability assessment tools (Nessus etc.), and data encryption technologies.
• Strategic leader who can drive a vision for cybersecurity while simultaneously striving for tactical results.
• Experience communicating security related concepts to a broad range of technical and non-technical audiences.
• Experience relating business requirements and risks to technology proposals for security-related issues.
• Proponent of continuous improvement processes and the ability to challenge the status quo.
• High level of personal integrity, the ability to professionally handle confidential matters, and demonstrate appropriate levels of judgement and maturity when advising client senior leadership.

• Patience, empathy, confidence, and customer service skills. You will be working with a myriad of businesses, technologies, applications, and personalities.
• Ability to work effectively within a team as well as independently.
• Ability to stay focused and effective in a fast-paced environment.
• Talented interpersonal abilities to build rapport with clients and teammates alike.
• Self-starter with a positive attitude.
• Strong sense of initiative and ownership over work.
• Exceptional follow-through skills.
• Ability to work effectively and complete assigned tasks with minimal supervision.

WHAT ARE THE QUALIFICATIONS I NEED TO HAVE? 

• High school diploma or equivalent.
• Certified Information Systems Security Professional (CISSP) or equivalent, or must be willing to obtain in the first year of employment.
• 5+ years of relevant information security experience.
• Possess or be willing to earn one or more of the following credentials within the CMMC ecosystem:
  • Registered Practitioner (RP)
  • Certified Professional (CP)
  • Certified Assessor (CA)

WHAT QUALIFICATIONS WOULD REALLY HELP SET ME APART FROM OTHER APPLICANTS?  

• Associate degree or higher in Information Technology, IT Assurance, or Information Security (Cybersecurity).
• Active security certifications such as CISA, CRISC, CISM, GSEC, Security+.
• Experience in relevant industries such as Healthcare, Defense, Payment Processing, etc.
• Knowledge and experience working with Microsoft 365, Microsoft Azure, and other Cloud service offerings.
• Familiarity with the MSP environment including associated tools, such as ConnectWise, Kaseya, M365, Azure, etc.

WHAT IS THE WORK ENVIRONMENT LIKE? 

• Normal office working conditions. Work requires regular sitting/standing at a desk,
  working with a computer. This position requires standing, walking, sitting, using
  hands, seeing, reaching, talking, writing, and hearing; it may require occasionally
  carrying or lifting equipment if working on-site.
• Position may require hours that exceed normal working hours per day during peak
  periods; on-call or travel work may include nights or weekends
• Position requires regular contact with others - in meetings, by phone or by email.
  Interactions focus on data collection, problem solving, needs analysis and technical
  training development. Interactions are initiated in person or electronically. Position
  may require some travel to Convergence or client sites.

WHY SHOULD YOU WORK HERE?  

• Culture of unity, transparency, and trust. Our leadership team wants you to be successful at Convergence, and we will do anything we can to support your personal
  and professional growth.
• Group benefits plans (including medical, dental, vision in US and health savings and
  dental in Canada, including retirement plans (401k and RRSP).
• Education and certification reimbursement is also available so we can help you grow.
• We believe feedback makes us better. You can expect regular meetings with your
  manager and quarterly conversations about your performance and growth.
• Outstanding teammates. We’re very selective to make sure we have the best staff
  available for you to work alongside!
• Many teambuilding and company events throughout the year so you can get to know
  your teammates on a more personal level, as well as kick back and have some
  fun (families are oftentimes included as well). 

PERFECT FIT… 

If this sounds like your type of place and you can wow us with your spectacular skill set, then we would love to hear from you!  

We are an equal opportunity employer and invite diversity in our applicants; our differences make us stronger! We welcome and encourage applications from qualified candidates of all races, sexes, colors, religions, sexual orientations, disabilities, ages, and gender identities. Accommodation is available upon request for candidates taking part in all stages of the selection process. Please contact hr@convergencenetworks.com