• Provide cybersecurity consulting services to various clients of Crossbow Labs.
• Conduct interviews with clients, review client documents for compliance, write compliance reports, and prepare and deliver briefings.
• Travel to client locations to assess and validate physical and technical controls necessary to maintain compliance.
• Review network architecture, hardening of multiple operating systems, malware protection, IDS/IPS, IT controls, network and system monitoring, and protection methods.
• Work closely with clients to assess their IT security posture, identify weaknesses and vulnerabilities in relation to the PCI-DSS security framework, ISO, and other compliance standards.
• Develop compliance procedures and documentation for the PCI program.
• Conduct training sessions for clients and internal teams on PCI DSS and other cybersecurity standards and regulations.
• Strong technical understanding of networks, servers, workstations, and applications.
• Proficiency in the PCI DSS v3.2.1 and PCI DSS v4.0 security standard.
• Good comprehension of the ISO 27001 standard.
• Ability to conduct Risk Management, Business Continuity Planning (BCP), and Disaster Recovery (DR) reviews.
• Capability to perform network architecture reviews.
• Capability to perform system configuration reviews for operating systems (Windows & Linux), servers, databases, routers/switches, and firewalls.
• Ability to conduct firewall/network rules reviews.
• Ability to conduct application architecture reviews, review application security controls, and perform application code reviews.
• Familiarity with cloud-based hosting solutions such as Microsoft Azure and AWS.
• Strong team collaboration skills and client relationship management.
• Excellent oral and written communication skills.
• Ability to work both independently and in collaborative environments to meet delivery obligations.
• Commitment to continuous learning and staying updated with current news and trends in the cybersecurity space.