The successful Associate candidate will have a combination of experiences in delivering high-end cyber risk management and threat modeling consulting services and applying the principles of security vulnerability, threat and risk assessments.
This a client-facing role that will serve as a core Cybersecurity Risk Management practice area team member capable of supporting engagements across the Firm’s Strategic Advisory Services practice. Assigned projects will primarily encompass cybersecurity-related challenges, but can also include requirements related to: physical or converged risk management, market research, industry and public policy analysis, due diligence, and strategic consulting.
The successful candidate will assist in maintaining client relationships, coordinating internal project team interactions, conducting research, reviewing documents and producing and contributing to necessary deliverables to meet/exceed client needs. The candidate will be exceedingly well organized, flexible, pronounced verbal and written communications skills, a driven and efficient researcher, should enjoy the challenges of working in a dynamic office, and must demonstrate a high level of professionalism and discretion in handling sensitive business information and client issues. The candidate will demonstrate a desire and ability to further develop subject matter expertise related to cybersecurity risk, and its implications for security programs, international security policy and the application of risk management principles.
Cybersecurity Risk Management/Strategic Advisory Services
Execute and contribute to risk assessments that integrate threat, vulnerability and consequence, intelligence and information.
Oversee process for discovery, analysis, evaluation and development of findings and recommendations in security projects. Develop an overall view on current-state and future-state cybersecurity maturity and effectiveness.
Analyze open source information and intelligence.
Weigh tradeoffs around risk reduction, ease of implementation, efficiency gains and regulatory drivers.
Evaluate cybersecurity products and services.
Formulate action plans to address cyber risk in a way that aligns with business goals and objectives.
Develop deliverables, findings and recommendations to clients in senior business roles, including C-suite stakeholders.
Contribute security expertise to engagements led by senior team members and ensure assignments are completed as directed and on-time.
Support sales and business development initiatives by preparing pitch materials, writing proposals and participating in meetings with potential clients.
Cultivate and pursue new business opportunities with guidance from senior colleagues.
Develop Chertoff Group content (e.g., whitepapers, blogs, podcasts, webinars, etc.) on selected security topics
Schedule and assign duties to colleagues, team members and subcontractors on complex programs and ensure assignments are completed as directed by engagement manager.
Organize and coordinate with internal teams ranging from junior staff to former Federal agency heads and industry CEOs.
Manage and organize administrative tasks, including contract execution, meeting/call scheduling, knowledge management etc.
Conduct project and CRM management using Salesforce or similar CRM or client management, project management or financial management systems and tools.