Principal Advisory Services Consultant (Massachusetts)
Rapid7 (NASDAQ: RPD) is helping organizations around the globe advance securely. Our technology, services, and community-focused research simplify complexity for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. With more than 9000 customers across 120+ countries, Rapid7 is a recognized leader in cybersecurity that has proudly earned numerous industry accolades and strong recognition for our technology and culture. Learn more at www.rapid7.com.
The Advisory Services Team
Advisory Services at Rapid7 deliver capabilities that transform the way our customers manage their cybersecurity programs and set them up for long term success.
Our clients engage us to provide world-class cybersecurity organizational maturity assessments, program development, operational security evaluations, and executive level services. Our line of business is focused on providing a customer-centric approach to helping both build and manage cutting edge cybersecurity programs.
We are highly experienced cybersecurity professionals who possess a passion for customer success, technology, and solving complex cybersecurity business problems with innovative solutions.
The Opportunity
The right candidate will be an experienced cloud security and technology expert to help us grow our expanding capabilities and deliver outstanding results to our customers. This role will be heavily focused on both designing and going to market with consulting services that address cloud security architecture and implementation challenges as well as partnering with Rapid7s cloud security product teams and cutting edge technology. Rapid7 is seeking a candidate that brings the right blend of practitioner experience and execution skills to enhance our customers outcomes. If you are an energetic, innovative cloud security expert, who has the experience and commitment to be part of a global team, this could be a great match!
Essential Responsibilities:
This role is designed to be both customer and internally facing, supporting our Advisory delivery team.
The core tenant of the role is to enable our success through innovative service creation, project design, and technical solutioning with sales, marketing, and most importantly our customers.
Applicant will perform evaluations of IT and information security infrastructure within customer environments across a broad range of industries, and across a broad range of frameworks and control sets
Work closely with customers to truly understand their needs, where they have gaps, and create innovative approaches to managing cyber risk
Document and communicate technical findings and recommendations to customer personnel
Assist with the creation and maintenance of a knowledge base of methodologies and recommendations aligned with standards such as CSA, CIS, NIST, ISO, PCI, and HIPAA
Advise on security best practices as they relate to Rapid7 technologies
Regularly provide input to Rapid7 Sales, Marketing, Customer Success, and Product teams
Actively participate within Rapid7 Community and Security Industry as an advocate and advisor, including public speaking at conferences, webinars, and writing blogs.
Requirements:
Ten (10) or more years of experience in the Information Security and technology space
Current experience must consist of hands-on cloud security architecture, design, implementation, and operations for Google Suite, AWS, GCP, Azure and/or O365.
Expert knowledge in VPCs, Containers, Kubernetes, CloudTrail, CloudWatch, GuardDuty, Inspector, Detective, Glue, Athena, Containers among others
Experience designing complex security architecture using Security Information and Event (SIEM)/ Log Management, Governance Risk Compliance (GRC), Identity Access Management, IDS/IPS, Advanced Persistent Threat, Anti-Virus, Vulnerability Management, Business Intelligence
Prior IT administration experience with unix and windows OSs, network infrastructure and operations, data storage and backup, middleware in a distributed computing environment, and /or database implementation and administration.
Experience operating/designing/implementing security solutions such as: Security Information and Event (SIEM)/ Log Management, Governance Risk Compliance (GRC), Identity Access Management, IDS/IPS, Vulnerability Management, EDR, MFA, Content Screening, etc.
Strong understanding of IT and security operations, enterprise networking, systems planning and architecture
Familiarity with security frameworks such as NIST, CIS, ISO, CMMC, etc.
Ability to build relationships with, understand business needs of, and deliver demonstrable value to management and executive teams
Bachelor's degree or equivalent experience in Engineering, Computer Science, MIS, CIS or related field (deep experience in lieu of degree highly desirable)
CISSP, CISM, CCSP, CCSK, CCAK, AWS, Azure, and O365 certifications highly desirable
Outstanding verbal and written communication skills
Willingness to travel 25-40%
Pluses:
Previous senior or above level security consulting experience