Description
Director, National Security - Cybersecurity Governance
Alvarez and Marsal is a premier independent global professional services firm specializing in providing turnaround management, restructuring, performance improvement and corporate advisory services. Our talent drives our success, resulting in our growing Disputes and Investigations practice becoming one of the most respected in the industry. From the boardroom to the courtroom, the firm delivers a wide array of solutions to contentious situations by drawing on the deep skills, diverse disciplines and experiences of its professionals. We are r ecognized by Global Arbitration Review as one of the leading firms of independent experts for arbitration and considered a top three firm by Who's Who Legal based on the number of experts across the globe. Our clients include major banks, leading law firms, private equity firms and well-known corporations and upper-mid-sized companies.
What will you be doing?
With the rapidly changing geopolitical environment, competition for sensitive technologies, and risks associated with potential exploitation of sensitive personal and business data, demand for national security-focused risk analysis and mitigation is growing significantly. Our team supports organizations, investors and counsel identifying, assessing and reducing national-security related risk. We focus on assisting with the national-security components of transaction diligence and design, embedding regulatory requirements into business systems and processes, and facilitating transparency between companies and regulators by leveraging data analytics and other tools. The team also serves as fiduciary to U.S. government agencies in a role of either third-party monitor or third-party auditor.
Responsibilities:
Working both independently and with team members as the project lead to successfully execute advisory, oversight, and audit projects arising from (among other requirements) Foreign Direct Investment ("FDI") national security reviews, export and technology controls, and Cybersecurity Maturity Model Certification ("CMMC").
Working with client security personnel to define and document security controls for distributed, big data systems.
Conducting assessments to verify the efficacy of administrative, technical, and physical safeguards implemented to protect sensitive data and systems.
Leading security assessments of application and software security, which may include: (i) reviewing architecture diagrams; (ii) interviewing personnel responsible for various parts of the software development process; (iii) interviewing personnel responsible for network and software security (iv) overseeing static and dynamic code analysis; (v) overseeing network penetration testing; and (vi) preparing high quality written reports for senior counsel, executives, and national security officials and regulators.
Interpreting, assessing, and overseeing network and application penetration test reports.
Integrating technology solutions to facilitate sensitive security compliance and oversight engagements.
Developing and refining engagement approaches and project plans based on guidance from team leadership and experience.
Availability for up to 20% travel required.
Who will you be working with?
At AandM you will have the opportunity to work with a diverse team of supportive and motivated professionals that love to share their knowledge and depth of industry experience with others. AandM's Disputes and Investigations practice comprises professionals from a wide range of backgrounds, who bring and share their deep expertise in conducting investigations and delivering expert witness reports. We have an inclusive developmental environment where everyone has the opportunity to learn and grow. Our culture is characterized by openness and entrepreneurial thinking, with a foundation of mutual respect and high-quality standards for our work. We strive to remove bureaucracy in favor of recognizing effort and results through advancement opportunities and a motivating performance-based reward structure.
How will you grow and be supported?
As a Disputes and Investigations Director, you will have the opportunity to take your career to the next level by gaining invaluable experience across different industries, sectors, and companies on a variety of interesting and critical projects. You will have the opportunity to apply your critical thinking, analysis and research skills in complex, ambiguous situations. Building on your communication skills, you will work to distill your findings into concise, intuitive, and compelling data stories. You will be working closely as a team with experienced professionals who will provide you with developmental feedback and growth opportunities. You will have the opportunity to lead various project workstreams, while gaining exposure to a variety of disputes and investigations, across an array of clients and industries.
We offer competitive benefits and opportunities to support your personal and professional development. Click to learn about our commitment to your well-being. AandM recognizes that our people drive our growth, and you will be provided with the best available training and development resources through formalized and on the job training, as well as networking opportunities with renowned legal and accounting experts. Learn more about why AandM is a wonderful place to work.
Qualifications:
Bachelor of Science degree.
Experience with NIST CSF, NIST SP 800-53, NIST SP 800-171, NIST SP 800-218, NIST SP 800-161, and/or ISO 27001
Experience working in cybersecurity governance (i.e., experience working with NIST CSF; NIST 800-171 and -53; CIS-18 IG1 and ISO 27001)
Proficiency in at least one programming language (e.g., Python, Java, etc.)
Background in network and cloud-based platforms (e.g., GCP, AWS, Kubernetes, etc.)
Familiarity with containerization technologies and deployments
Experience with Big Data platforms (on premise and cloud)
Ability to obtain a USG security clearance
One or more relevant industry certification: CompTIA Security , CompTIA CySA , CompTIA CASP , CISSP, CISM, CISA, ISO 27001, or comparable certifications
Full-time Positions and Part-time Positions Over 30 hours
Regular employees working 30 or more hours per week are also entitled to participate in Alvarez and Marsal Holdings' fringe benefits consisting of healthcare plans, flexible spending and savings accounts, life, ADandD, and disability coverages at rates determined from time to time as well as a 401(k) retirement plan. Provided the eligibility requirements are met, employees will also receive a discretionary contribution to their 401(k) from Alvarez and Marsal. Additionally, employees are eligible for paid time off including vacation, personal days, seventy-two (72) hours of sick time (prorated for part time employees), ten federal holidays, one floating holiday, and parental leave. The amount of vacation and personal days available varies based on tenure and role type. Click here for more information regarding AandM's benefits programs.
The salary range is $130,000 - $175,000 annually, dependent on several variables including but not limited to education, experience, skills, and geography. In addition, AandM offers a discretionary bonus program which is based on a number of factors, including individual and firm performance. Please ask