PRINCIPAL SECURITY CONSULTANT
recruiting@mandiant.com                                                                                                                                                                     CONS0300

 
     

SUMMARY OF JOB DESCRIPTION

MANDIANT was founded, for the purpose of bringing together the most talented, passionate, and specialized expertise within the security industry. Our mission is to advance the digital forensics and information security fields by providing high-end professional services, education, cutting edge research & development, innovation, and automation.

MANDIANT seeks dedicated and experienced candidates to join our team of information security professionals. With Professional Services, Education, and Products divisions in both the commercial and government sectors, our consultants have a unique opportunity to experience a wide variety of challenges based upon their skills and interests.

ESSENTIAL DUTIES AND RESPONSIBLITIES

Provide the highest level of information security and computer forensic expertise for government and commercial clients. Provide consulting services to improve the security posture of clients as well as investigate and resolve complex security incidents in an accurate, timely, and professional manner. Manage all aspects of assessment and response engagements from inception to completion. Apply formal and structured methodologies to provide clients with a consistent level of quality that reflects the knowledge gained on prior engagements. Develop and present accurate and timely reports and deliverables to clients outlining appropriate technical solutions, remedial steps, and accurate conclusions. Perform as a subject matter expert in one or more of the following areas:

  • Computer Security Incident Response (IR): Conduct IR investigations in external compromises, fraud, embezzlement, extortion, theft of intellectual property and harassment cases. Evaluate and improve the effectiveness of IR policies and programs in use. Identify and implement remediation recommendations.
  • Computer Forensics: Perform forensic analysis and technical investigations involving forensic duplication of electronic media, custom script development, software and malware analysis, researching specialty software and creating custom tools. Provide civil and criminal litigation support by collecting, reducing, searching and producing evidence for use by legal counsel.
  • Network & Application Security: Perform vulnerability assessments and penetration testing in a variety of technical environments. Assessment engagements include reviews of technical architecture, external network vulnerability, firewall rule sets, VPNs wireless networks, phone system vulnerabilities, web applications, host configurations, internal network vulnerability, social engineering, source code, mobile devices, mobile applications and commercial software products. Also perform security program, policy and procedure reviews against industry regulations such as PCI and GLB and industry standards such as ISO17799/27002.
  • Research and Development: Support innovative ideas and special R&D projects; specialized tool development; demonstrate expertise in one or more of the following areas: reverse engineering, assembly programming, malware analysis, code optimizations, kernel programming, or device driver development.
  • Professional Education: Serve as an instructor for Mandiant developed classes; develop course content/labs; participate as course steward; contribute as author for element or articles or whitepapers.

REQUIRED SKILLS

  • Strong technical and consulting skills with subject matter expertise in one or more of the following specialties: incident response, computer forensics, network security, application security, security standards, policy and procedure or related research and development.
  • Project management capability, and sound written and verbal communication skills.
  • Ability to communicate with all levels of clients, manage project timelines, follow methodologies, and create/present clear, concise deliverables.
  • Mastery of tools used incident response, computer forensics, network security assessments, and/or application security.
    Thorough understanding of network protocols, network devices, computer security devices, secure architecture, and system administration in support of computer forensics and network security operations.
  • Mastery of Windows and Unix operating systems.
  • Technical specialization in at least two of the following: Windows, Linux, Solaris, Mac, Databases, Routers/Firewalls.
  • Ability to travel to support company objectives.
  • Ability to successfully complete civilian and US Government background investigations.

EDUCATION LEVEL

  • B.S. or B.A. in a technical field preferred. Experience and technical certifications may be substituted for a degree.

LOCATION(S)

  • Alexandria, VA
  • Columbia, MD
  • New York, NY
  • Los Angeles, CA
  • San Jose, CA


close window