Cybersecurity Consultant

RMC is seeking a Cybersecurity Consultant for a full-time remote position!

Are you ready to embark on a fulfilling and impactful career journey with Risk Mitigation Consulting (RMC)? We're in search of an exceptional Cybersecurity Consultant to become a part of our mission-driven team, dedicated to making a difference in the federal and commercial markets. At RMC, we're all about enhancing security for both our military and global commercial partners, offering an array of services such as Risk Management, Mission Assurance, and Cybersecurity.

Our team's well-being is paramount, and we reflect this commitment through our flexible work environment and exceptional company culture. By joining RMC, you become a key contributor to our mission – Assuring Tomorrow!

When you join RMC, you'll experience a range of benefits, including:

• Comprehensive health, vision, and dental insurance plans fully covered for employees
  • Subsidized dependent health care coverage
• Participation in our Annual Bonus Program
• Life insurance policy equivalent to 1x your annual salary
• Company paid short and long-term disability
• Cell phone reimbursement of $65 per month
• 401(k) Plan with contributions
• A 401(k) Safe Harbor Employer Contribution Program, which includes a 3% contribution

Position Summary:

The RMC Cybersecurity Consultant executes a variety of cybersecurity engagements primarily for RMC’s commercial clients. The Consultant maintains up-to-date knowledge of security threats, countermeasures, security tools and best practices with a demonstrable ability to deploy this knowledge in engagements for clients. The Consultant may use knowledge and expertise to perform penetration testing and other offensive security tasks for clients. This position is primarily remote but requires travel for on-site client projects. The Consultant will have opportunity to gain exposure to a wide variety of cybersecurity projects, to include offensive security services, compliance / risk assessments, IT/OT consulting, and more. Travel for on-site client work can reach up to 50% at peak periods but is lower during non-peak periods. While the vast majority of travel is CONUS, there may be a requirement for some OCONUS travel.

The Cybersecurity Consultant delivers cybersecurity services for a variety of clients. While the Consultant’s main day to day role will be supporting cybersecurity projects for RMC clients, Consultant will also participate as needed in pre-sales scoping calls with existing and new clients, technical proposal writing, SOW development, project management, and other tasks to support the growth and development of RMC’s business and team. 

Essential Functions:

• Provide cybersecurity consulting services to RMC’s customers on a variety of commercial projects
• Conduct security assessments, develop and present kickoff presentations, write and deliver technical reports, and effectively communicate with client leadership and SMEs
• Collaborate, develop, and maintain relationships with clients, RMC’s consulting team, and leadership
• Participate in pre-sales scoping calls, support technical proposal writing, and SOW development
• Provide project management support when required on consulting engagements
• Support RMC’s business development and marketing efforts with SME input
• Manage RMC attack lab infrastructure, help setup / update new infrastructure for client engagements
• Develop tailored offensive cybersecurity testing and strategies for new and existing customers
• Identify and implement improvements in existing processes and procedures
• QA / peer review technical reports for accuracy

This description reflects the essential functions but does not proscribe or restrict the tasks that may be assigned.

Competencies:

• Strong technical cybersecurity background, demonstrable experience performing offensive pentesting engagements and other cybersecurity assessments
• Thorough understanding of current threat landscape, vulnerabilities, and frameworks (such as OWASP Top 10)
• Ability to assess client infrastructure for vulnerabilities (network, device, web app, etc.) and provide strong remediation guidance
• Strong verbal and written skills, particularly for client deliverables such as kickoff presentations, technical reports, etc.
• Customer service oriented and experienced in providing client services
• An ability to cultivate strong relationships with clients and cultivating business opportunities
• Attention to detail and excellent organizational skills, including the ability to prioritize tasks and manage time to meet multiple deadlines
  
• Ability to work in a team environment or individually to ensure team tasks are successfully completed within required timelines
• Possess the ability to understand and explain complex subjects to non-technical audiences
• Possess strong leadership characteristics and abilities

Education & Experience Requirements

• Bachelor’s degree or higher preferred
• 3-5 years of cybersecurity engineering and/or consulting experience

Required Certificates & Licenses:

•  CompTIA Security+ or related cybersecurity certifications

Desired Certificates & Licenses:

• General cybersecurity certifications such as CISSP or CISM are preferred but not required, or
• Offensive certifications such as OSCP, PNPT, OSEP or
• IT/OT certifications such as GICSP or GRID

Other Requirements:

• Valid Passport: Possession of a current passport with a minimum of 8 months remaining until the expiration date.
• Travel Flexibility: Willingness and capability to travel, CONUS and OCONUS approximately to 40% of the time.
  • Telecommunication is authorized for this role.
    
• Work Environment Compliance: Commitment to maintaining a drug-free work environment, U.S. Citizenship, and possession of a valid state driver's license.
  
• The candidate must be authorized to work in the United States and must be able to pass a background check.

Reasonable Accommodations Statement

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

RMC has reviewed this job description to ensure that essential functions and basic duties have been included. It is intended to provide guidelines for job expectations and the employee's ability to perform the position described. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills, and abilities. Additional functions and requirements may be assigned by your manager as deemed appropriate. This document does not represent a contract of employment, and RMC reserves the right to change this position description and/or assign tasks for the employee to perform, as RMC may deem appropriate.

RMC is an Equal Opportunity Employer.