Apply Now

Practice Director - Threat (Attack & Penetration)

Denver, CO, USA | Optiv

  • Industry:
    Management Consulting
  • Position Type:
    Full-Time
  • Functions:
    General Management
    Operations / Production
  • Experience:
    10-12 years
Job Description:
56 people have viewed this job

The Practice Director will report directly to the Vice President of Threat Management and will help shape the future of Optiv’s Threat Management Technical Community. This role will lead a team of 20-25 consultants, working closely with peer Technical Directors and represent Threat Management in front of clients, sales, and Optiv executive leadership.

This will be an experienced and seasoned veteran in technology consulting, platform selection and implementation, as well as leading teams and projects; must have run point on multiple successful large-scale offensive security and assessment engagements. The director will be responsible for shaping the future of Threat Management offerings and capabilities, mentoring, leading and delivering services with technical teams that are in-house, near-shore or offshore. 

This individual will be the primary people-leader for a team of consultants, The Practice Director will provide leadership, guidance and oversight for all team operations. This includes helping Managers and Consultants set and achieve professional goals, recruiting and performing interviews for new hires. The Practice Director will also track and monitor current happenings within the industry. Identify opportunities for operational improvement and lead the development and roll out of new consulting methods and tools.

Primary Duties and Responsibilities:

•Manage and mentor consultants performing red team, penetration testing, and application and network security assessment testing and remediation engagements

•Lead the team in developing detailed Threat documentation, methodologies, and offerings for consultants and clients to leverage when preparing for and executing complex attack and penetration activities

•Work within the team to define strategy and direction of Threat assessment services at Optiv

•Provide thought leadership internally and externally by writing blog posts, articles, white papers or hosting webinars

•Scout and suggest innovative marketing channels and tactics to grow the business of our client

•Work with sales teams to deliver consultative conversations with customers and operate as the “tip of the spear” for Optiv Services

•Provide mentor coaching and work with consultants to developer career progression roadmaps

•Architect programmatic services to ensure that offensive testing aligns with larger customer risk transformation objectives 

•Recognized expert across multiple solution areas

•Comfortable leading discussions with Client executives on broad as well as specific subject matter

•Able to present to large groups.Speaks as an authority

•Can handle difficult questions and consistently wins support from client and internal audiences

•Ability to envision consulting approach and deliverables for new areas of work for Optiv

•Oversee people, process and tools selection, development and delivery, and modifying and changing methodologies as required

•Broad awareness of the security/ technology space as a whole

•Establishes industry expertise through writing, speaking or online presence

•Contributor to industry groups and/or publications

Qualifications

Education and Skills Requirements:

•Bachelor's degree and approximately 10-15 years of related work experience

•Approximately 8-10 years of Threat Management experience or in-depth consulting and implementation experience

•High degree of business acumen

•Experience within multiple established Security Architecture and/or Enterprise Architectural Frameworks

•High degree of knowledge of security concepts and methods such as vulnerability assessments, data classification, privacy assessments, incident response, security policy creation, enterprise security strategies, architectures and governance

•Prior experience with Endpoint Detection and Response tools, Active Directory trusts and architectures, and privileged access management

•Strong understanding of networking (TCP/IP, OSI model), operating system fundamentals (Windows, UNIX, mainframe), security technologies (firewalls, IDS/IPS, etc.) and object-oriented programming/scripting languages

•Strong understanding of regulatory requirements and compliance issues affecting clients related to privacy and data protection, such as PCI DSS, GLBA, Basel II, EU Data Protection Directive, International Cross Border, and U.S. State Data Privacy Laws

•Technical architecture experience integrating data protection software into clients' infrastructure; network architecture design, implementation and administration

•Working knowledge of operating systems, virtual machine environments, mainframe security packages, and relational database management systems

•Willingness to travel to meet client needs

•Valid driver's license where applicable

•The successful candidate must hold or be willing to pursue related professional certifications such as the CISSP, CISM, and/or CISA

•Strong interpersonal skills

•Strong written and presentation skills; ability to clearly communicate complex messages to a variety of audiences

•Possess high standard of integrity and confidentiality


Other companies hiring with Ivy Exec

 Company Logos