Public Consulting Group LLC (PCG) is a leading public sector solutions implementation and operations improvement firm that partners with health, education, and human services agencies to improve lives. Founded in 1986, PCG employs approximately 2,000 professionals throughout the U.S.—all committed to delivering solutions that change lives for the better.

The firm is a member of a family of companies with experience in all 50 states, and clients in six Canadian provinces and Europe.

PCG offers clients a multidisciplinary approach to meet challenges, pursue opportunities, and serve constituents across the public sector.

To learn more, visit www.publicconsultinggroup.com.

Information Security Engineer will be part of PCG’s Corporate CISO office and work under the direct supervision of Director Information Security Engineering.

The following are the highlights of expected responsibilities.

Information Security Engineer Duties & Responsibilities: ­­

• Collaborates across multiple teams, including security, leadership, IT, business stakeholders, and vendors, to gather business requirements, evaluate risk and build technical solutions.
• Applies technical and functional security expertise to evaluate and manage business requests including assesses third party vendors as part of Infosec risk assessment to build appropriate technical solutions.
• Functions as an expert consultant on security matters and leads cross-functional discussions in making risk-based decisions. Recommends process or product improvements for better security coverage or efficiency.
• Identifies threat/attack surfaces for all PCG infrastructure and applications (i.e., on-prem, hybrid, cloud-only).
• Validates and aligns security solutions (e.g., Advanced Threat Protection, Intrusion Prevention, Email/Collaboration Security, Data Loss Prevention, encryption, Application code scanning and secure coding) against/with defined goals and objectives and creates measurements of security solutions for key stakeholders.
• Prepares, maintains, and improves documentation to support compliance and regulatory efforts (e.g., Policies, Standards, Regulatory Reports), along with project handover documentation for operational activities.
• Manages tasks through ticketing system. Provides regular updates to stakeholders and leadership on progress.

Education: B.S. or B.A. degree is a plus, with related information security discipline experience or industry leading certifications.

Experience:

• 3+ year of experience in information security or information risk management.
• In-depth operating knowledge of security for application and infrastructure, security threat/risk/data classification.
• Familiarity with industry standards NIST-800, HIPAA, FERPA and various security protocols, such as PKI, SSL, Encryption, Data Redacting, DLP.
• Familiarity with Firewalls, Intrusion detection/prevention, Malware protection, SDLC processes, Secure coding, Scripting, EDR, ATP, Vulnerability scans, Email Security Systems, Web security gateways, O365/M365 DLP, Data Encryption, SIEM (Log Analysis) a big plus.
• Understanding of various systems and operating systems, like MS Active Directory, MS Windows, MS Exchange, Unix/Linux OS, TCP/IP.
• Certification: Information Security, Technology, Risk, and/or Management certifications are a plus

Required Skills:

• 3+ years’ experience in designing, implementation and operating programs for Information Security/Cybersecurity in Cloud space e.g. AWS, Azure etc.
• Experience in secure coding practices, and application code scanning.
• Working technical expertise of security, as well as industry trends.
• Risk management experience with advanced knowledge of industry or geographic standards and regulations e.g., NIST, HIPAA, GDPR, CCPA.
• Ability to handle complex situations and make decisions and recommendations with limited data.
• Strong interpersonal, verbal, and written communication, including ability to present and influence peers, management, and leadership across PCG and its customers.
• Solid analytical/problem solving skills with capability to identify solutions to unusual and complex problems.
• Ability to work within high-performing virtual teams with flexible hours covering footprint of PCG.
• Ability to get results while maintaining a service orientation.

Compensation for roles at Public Consulting Group varies depending on a wide array of factors including, but not limited to, the specific office location, role, skill set, and level of experience. As required by applicable law, PCG provides the following reasonable range of compensation for this role: $120K-$139,999.

In addition, PCG provides a range of benefits for this role.

Public Consulting Group is an Equal Opportunity Employer dedicated to celebrating diversity and intentionally creating a culture of inclusion. We believe that we work best when our employees feel empowered and accepted, and that starts by honoring each of our unique life experiences. At PCG, all aspects of employment regarding recruitment, hiring, training, promotion, compensation, benefits, transfers, layoffs, return from layoff, company-sponsored training, education, and social and recreational programs are based on merit, business needs, job requirements, and individual qualifications. We do not discriminate on the basis of race, color, religion or belief, national, social, or ethnic origin, sex, gender identity and/or expression, age, physical, mental, or sensory disability, sexual orientation, marital, civil union, or domestic partnership status, past or present military service, citizenship status, family medical history or genetic information, family or parental status, or any other status protected under federal, state, or local law. PCG will not tolerate discrimination or harassment based on any of these characteristics. PCG believes in health, equality, and prosperity for everyone so we can succeed in changing the ways the public sector, including health, education, technology and human services industries, work.