Bonadio & Co. LLP Security Consultant Level 1 in Pittsford, New York
Security Consultant Level 1
US-NY-Pittsford | US-NY-Amherst | US-NY-Syracuse | US-NY-Albany | US-NY-New York | US-TX-Dallas
\# of Openings
IT Audit/ Risk Managment
FoxPointe Solutions IRM is hiring for a security consultant to commensurate with cyber-security, risk management, compliance (HIPAA, PCI, SOC Type 2) auditing, testing, customer service and information assurance. As a member of the FoxPointe Solutions Information Risk Management team, the Security Consultant will be working directly with clients providing guidance on the confidentiality, integrity, and availability of their data.
Key member of the teams performing engagements in IT audit, risk management consulting, attestation in HIPAA, PCI, SOC, etc., and supply finished work product, testing, and reporting.
Advance your familiarity with pronouncements of the key State, Federal, and International Cybersecurity Regulators.
Prepare clear and concise working papers and reports to the engagement principal or partner.
Assess and prepare meaningful and well-written recommendations for inclusion in client correspondence.
Demonstrate the ability to identify issues and apply data protection principles and auditing procedures.
Work independently as needed on client projects in and out of the office.
Develop positive working relationships with clients.
Develop an ability to effectively respond to questions from supervisors and clients.
Ability to actively listen and question appropriately to gain full understanding.
Effectively apply technology tools in assigned areas.
Assist in the preparation of reports and testing outcomes.
Recognize and proactively support the fact that the firm is in the business of providing quality client service.
Anticipate problems/issues and keep the senior/manager informed of engagement/project status.
Comply with firm practice management and quality control procedures and systems.
Develop awareness of budget constraints vs. quality of work needed on engagements.
Contribute to fostering an environment of teamwork.
Maintain and promote ethical and firm values in conducting internal and external business activities.
Computer proficiency and ability to effectively use firm technology
Skilled in Microsoft Office suite
Excellent verbal and written communication skills (i.e., client presentations, industry articles, etc.)
Exceptional customer service skills
Experience performing internal or external audits of information technology/cybersecurity controls
Ability to work outside of normal business hours at peak client service delivery times
Desire to seek involvement in professional and community organizations
Ability to develop and sustain business relationships for the purpose of increasing the firm's client base
Ability to be autonomous and to handle and manage multiple priorities
Strong organizational, problem-solving, and analytical skills
Compliance skills in relation to key legislations such as the Health Insurance Portability & Accountability Act (HIPAA), Payment Card Industry (PCI), The National Institute of Standards and Technology (NIST) and The Gramm-Leach Bliley Act (GLBA) and compliance assessments.
Flexible approach to tasks that may change daily.
Analytical ability to break down problems into constituent parts.
A bachelor's degree in computer science, IT, Accounting, Cybersecurity, or relevant majors/minors or commensurate experience.
Certification in one or more of the following; Certified Information Systems Security Professional (CISSP) Systems Security Certified Practitioner (SSCP), Certified Information Security Manager certification (CISM), Certified in Risks and Information Systems Control (CRISC), Certified Protection Professional (CPP), PCI QSA, Certified Information Systems Auditor (CISA), Professional (PSP), Security+ and CSA+.
Greater than three years' experience of working on information security/risk management projects for major organizations is desirable.
Solid understanding of security assessment and management is required.
Security design, architecture and implementation is necessary.
Compliance management is essential.
Great project management and communication skills is a requirement.
In-depth knowledge of data protection regulations and technology supporting fraud detection.
Hours of Operation
Our office hours are 8:00 a.m. to 5:00 p.m.
Our summer hours are 8:00 a.m. to 5:00 p.m. Monday through Thursday, and 8:00 a.m. to noon on Friday.
At The Bonadio Group, we believe that an inclusive work environment allows all of our people to achieve their greatest potential and the greatest results for our clients and communities. Bonadio is committed to the principle of equal treatment and opportunity for all people. The Firm is committed to fostering and managing diversity in the workplace as an integral part of its practice and service to clients. The Firm values the rich variety of perspectives and experiences offered by those of different backgrounds. This diversity strengthens our institution and enables it to better respond to our clients' needs in an increasingly global profession.
In the fast-changing accounting industry, The Bonadio Group is always on the cutting edge of growth and innovation. With our great mentoring and training programs, you'll be exposed to diversity of work, the ability to tackle more interesting issues, and have a path to Partnership. You'll be working with great people and great clients where you can truly make a difference. Apply online, get on board, and grow with us. You'll be glad you did!