Technology Consulting-DT CSG-Cyber Vision Assistant Manager

We are seeking a highly motivated and experienced Assistant Manager to join our Technology Consulting - DT CSG - Cyber Vision and Vigilance team. In this role, you will assist clients in strengthening their cybersecurity posture by delivering proactive cyber threat intelligence, security monitoring, and advanced vigilance solutions. You will work closely with senior leaders to design and implement cyber defense strategies that improve clients' capabilities to anticipate, detect, and respond to evolving cyber threats. Your expertise in cyber risk management, threat detection, and security operations will play a crucial role in helping organizations protect their critical digital assets and achieve robust cybersecurity resilience.

Key Responsibilities:

• Cyber Threat Intelligence & Analysis: Assist in providing clients with timely and actionable threat intelligence, leveraging internal and external sources to identify emerging cyber threats. Analyze cyber attack patterns, attack vectors, and tactics to help clients anticipate potential threats and strengthen their defenses.

• Security Monitoring & Vigilance: Implement and manage continuous security monitoring solutions that track security events and incidents across client environments. Collaborate with security operations teams to ensure real-time visibility of cyber threats and potential vulnerabilities within the client's infrastructure.

• Cybersecurity Risk Management: Help clients assess their cyber risks and design strategies to reduce exposure to cyber threats. Provide guidance on vulnerability management, penetration testing, and remediation strategies to minimize security gaps in client environments.

• Incident Detection & Response: Work with clients to establish robust incident detection and response frameworks. Assist in identifying abnormal behaviors, potential breaches, and attacks in real time, and help develop incident response plans to quickly address and recover from security incidents.

• Security Operations Center (SOC) Support: Support the creation and optimization of Security Operations Centers (SOC) or Managed Security Service Provider (MSSP) partnerships. Help clients fine-tune their SOC capabilities to better monitor, detect, and respond to cyber threats using advanced analytics, threat intelligence feeds, and automated response tools.

• Security Automation: Implement security automation tools and strategies that streamline threat detection, alerting, and response. Integrate automated workflows into security monitoring systems to reduce the manual effort required to handle repetitive tasks and accelerate incident resolution.

• Vulnerability Management: Guide clients in conducting vulnerability assessments, identifying high-risk security weaknesses, and implementing risk remediation measures. Provide recommendations for patch management and system hardening to address vulnerabilities and improve overall security resilience.

• Cybersecurity Strategy & Roadmap: Help clients define a proactive cybersecurity strategy aligned with their business objectives. Develop and communicate cybersecurity roadmaps that outline key priorities, milestones, and long-term security goals, ensuring clients can evolve their defenses to meet the changing threat landscape.

• Training & Awareness: Assist in training client teams on cybersecurity best practices and emerging threats. Foster a culture of vigilance by educating staff members on threat recognition, phishing prevention, incident response protocols, and general cybersecurity hygiene.

• Reporting & Communication: Prepare comprehensive reports on cybersecurity threats, incidents, and vulnerabilities for senior management and stakeholders. Ensure reports are clear, concise, and provide actionable insights to drive decision-making and security improvements.

• Continuous Improvement: Stay up to date with the latest developments in cybersecurity technologies, threat intelligence, and security monitoring techniques. Proactively identify areas for improvement in client security programs and recommend emerging solutions to enhance vigilance and cyber defense capabilities.

Qualifications:

• Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• 4+ years of experience in cybersecurity, threat intelligence, security operations, or incident response, with a focus on proactive monitoring, risk assessment, and vulnerability management.
• Strong knowledge of cybersecurity principles and best practices , including risk management frameworks, threat detection techniques, and incident response procedures.
• Experience with Security Information and Event Management (SIEM) tools (e.g., Splunk, IBM QRadar, ArcSight) and other security monitoring platforms.
• Hands-on experience with threat intelligence platforms , network monitoring tools , and security automation solutions (e.g., SOAR platforms like Palo Alto Cortex XSOAR).
• Solid understanding of vulnerability management and pen-testing processes, including tools such as Nessus, Qualys, or OpenVAS.
• Familiarity with cyber defense technologies such as firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), endpoint detection and response (EDR), and anti-malware solutions.
• Understanding of regulatory requirements related to cybersecurity, including GDPR, HIPAA, PCI-DSS, NIST, and ISO 27001.
• Excellent communication skills , with the ability to explain complex cybersecurity concepts and incidents to non-technical stakeholders and senior management.
• Strong analytical and problem-solving skills , with a proactive approach to identifying and mitigating cyber threats.

Preferred Skills:

• Certifications such as Certified Information Systems Security Professional (CISSP) , Certified Incident Handler (GCIH) , Certified Ethical Hacker (CEH) , or Certified Cloud Security Professional (CCSP) .
• Experience in Security Operations Center (SOC) design and operations, including real-time monitoring and incident response.
• Knowledge of advanced threat hunting techniques and the use of threat intelligence platforms (e.g., ThreatConnect, Anomali).
• Familiarity with cloud security , network security technologies, and container security (e.g., Docker, Kubernetes).
• Proficiency in scripting languages (e.g., Python, PowerShell) to automate security tasks and integrate threat intelligence feeds.
• Understanding of incident response frameworks such as NIST 800-61 or SANS Incident Handler's Handbook .

Soft Skills:

• Strong client-facing skills with the ability to establish and maintain relationships with senior stakeholders.
• Leadership potential , with the ability to guide and mentor junior team members.
• Attention to detail , with the ability to manage complex security issues and ensure that all risks are addressed in a timely manner.
• Adaptability and a strong interest in staying current with emerging cybersecurity trends and evolving threat landscapes.