Type: Contract
Start Date: TBD
Duration: TBD

Job Description:


Lakeside Consulting Group is a Minnesota based consulting firm focused on providing our clients with premier supported staff augmentation resources. We are looking for multiple technical and non-technical security resources, at all levels, to help support our growing client list. Our Information Security Consultants typically work remotely across the US to help our clients handle their security needs and obligations. As an Information Security Consultant you may be responsible for working with clients, and Lakeside Partners and Directors, to help address security needs in the following areas:

  • Security Governance, Risk Management, & Compliance - Program/process development, security assessments, audit support, training & awareness, policy development, risk treatment, incident response, vendor security, etc.
  • Security Operations & Support - Vulnerability management, application security, network security, encryption protocols, cloud security, logging/monitoring, identity & access management, etc.


Requirements:
  • Experience level will be based on the role, but 3+ years of information security experience is typical
  • Must be an excellent communicator and writer
  • Non-Technical Security Roles
    • Familiarity and experience with security frameworks (ISO, NIST, etc)
    • Experience managing security compliance obligations such as HIPAA, PCI, SOX, GLBA, GDPR, or other
    • Experience conducting security assessments
    • Experience writing security policies and/or standards
    • Security program and/or process development experience
    • CISA, CISM, CISSP, or equivalent preferred
  • Technical Security Roles
    • Expert in at least one of the following security operations areas: Firewall management, penetration testing, vulnerability management, application security, network security, encryption protocols, cloud security, logging/monitoring, identity & access management
    • Experience running multiple security tool types (e.g. scanning tools, vulnerability management tools, anti-malware tools, SIEM tools, etc)
    • Previous secure coding experience preferred
    • Cloud security experience preferred
    • CISSP, CCSP, CEH, or equivalent preferred