CAREERS

Cybersecurity Consultant

SUMMARY OF THE ROLE:

We are currently looking for a Cybersecurity Consultant to join our team in Arkansas.

The role of the Cybersecurity Consultant provides the expertise required to properly scope and deliver cybersecurity solutions and services to our clients. They work closely with our clients to deliver risk management services that align industry best practices and regulatory requirements. The consultant will identify risks and compliance gaps and collaborate with clients to prioritize and execute cybersecurity initiatives. 

We are always on the lookout for talented and passionate people that have what it takes in both aptitude and empathy to be a true contributor. With that in mind, we go to great lengths to ensure new contributors meet or exceed client expectations, as well as, live and work in alignment with our core values, which include a commitment to our client’s successunquestionable integritytaking personal accountability, and a one-team approach with humility and respect. 

ARE YOU LOOKING FOR A CAREER UPGRADE?

HERE’S WHY WE THINK YOU’LL LOVE IT HERE.

 

  • Grow your career with hands-on learning, paid certification training, career roadmaps and access to a team of experts in the field.
  • You’ll love who you work with. At Edafio, your intelligent and passionate colleagues are more than just coworkers — they’re friends.
  • As one of Arkansas’s Best Places to Work for five years running, we’re serious about fostering a culture of transparency and helpfulness.

SPECIFC RESPONSIBILITES:

Performs cybersecurity risk assessments to identify and document client risks in accordance with industry best practices and regulatory bodies to include CMMC, DFARS, NIST 800-171, NIST CSF, HIPAA, FDIC, GLBA, ISO 27001/2, PCIDSS, and MITRE ATT&CK

Continually manages risk management plans, milestones, and quarterly objectives to track progress and anticipate/notify of potential issues

Collaborates with IT resources and key stakeholders from other business units to asses impacts to business processes, consider compensating controls, and effectively communicate risk remediation initiatives

Leads monthly, quarterly, and annual presentations of risk management initiatives among client technical resources and senior management

Responds to incident response events to scope, contain, and mitigate active threats

Leads cybersecurity engineering resources to deliver vulnerability management, endpoint protection, privilege and identity management, network security, etc.

Actively monitors evolving threats and compliance changes and communicates findings to both Edafio and client stakeholders

Works closely with Edafio’s cybersecurity team to report issues, develop process improvement strategies, and ensure service success

Writes and updates cybersecurity policies and procedures aligned with client requirements

Leads cybersecurity training and marketing events

REQUIRED SKILLS:

2+ Years experience in cybersecurity, and framework alignment (CMMC, DFARS, NIST 800-171, NIST CSF, HIPAA, FDIC, GLBA, ISO 27001/2, CIS, etc)

2+ Years of strong working knowledge of system, application, network, cloud, and data security best practices

Proven success managing business risk and executing cybersecurity controls

Working knowledge of Microsoft 365 and Active Directory

Excellent analytic, problem-solving, active-listening, and decision-making skills

Excellent presentation, writing, interpersonal and communication skills

Comfortable engaging at executive levels to influence and provide strategic insight

Experience and/or strong desire to work in a fast paced environment with evolving conditions

PHYSICAL DEMANDS:

Must be able to sit, stand, and bend for the duration of shift. The position is mainly sitting, with occasional lifting of work equipment such as laptop, or driving to the work site to meet with the client(s).

* This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the associate. Duties, responsibilities, and activities may change, or new ones may be assigned at any time with or without notice.

STATUS:

Full-time/ Exempt/ Standard Workdays & Hours (30+ hours/ week)/ Some on-call may be required.

PREFERRED SKILLS/EDUCATION OR EXPERIENCE:

2+ Years experience in Incident Response and Digital Forensics

One or more of the following certifications: CISSP, CISA, CISM, CRISC,  GLSC, GSTRT

Industry Specialized Certifications for PCI DSS, HITRUST, etc.

Working knowledge of PowerShell, Threat Hunting Techniques, SIEM, SOC, EDR Platforms, Privilege and Identity Management Platforms

Bachelor’s degree in computer science, management information systems, information Technology, engineering, mathematics, or a related field

REQUIRED AND/OR PREFERRED EDUCATION:

High School diploma or GED equivalent required

Travel:

20-40% 

HAVE A QUESTION ABOUT ONE OF OUR SERVICES?