Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, Trustwave enables businesses to transform the way they manage their information security and compliance programs.
Trustwave delivers automated, efficient and cost-effective threat, vulnerability and compliance management. Trustwave is headquartered in Chicago, with customers in 96 countries.
For more information about Trustwave, visit .
As a Security Consultant, you will be responsible for :
Customer engagement and project execution providing information security consultation and assessment services, helping our clients meet their compliance obligations by evaluating their business, technology and operations against security standards like the PCI DSS or HIPAA.
Sharing your expertise with clients and colleagues to aid in making decisions on topics like strategy and scope as well as deep and highly technical projects like web application architecture and security.
Providing clear, organized findings and recommendations to clients and tracking progress towards resolution and compliance.
Producing detailed, high-quality reports for clients and industry third parties like payment card brands and the PCI Security Standards Council.
Learning from our close-knit group as well as contributing your thoughts, tools, industry news or lessons learned.
Working with clients to implement practices to produce secure applications and identify and eliminate security vulnerabilities
Working independently, undertaking information security engagements including working co-ordination and project management (client interaction, deliverables, work plans, escalation's, etc.)
Growing the business by identify up-sells with existing and potential clients
Providing regular status reports on all projects assigned
Being a team player and having the capability to expand / adapt your skills in fast-paced ever-changing industry.
Remote / Home Based with travel.
Skills and Qualifications
Must have previous professional experience providing consultative services as either an internal SME or as a third-party consultant.
Strong professional expertise in information security, must have the ability to thoroughly understand complex principles and apply them practically.
Comfortably present security concepts or findings to both highly technical and entirely non-technical audiences.
Strongly prefer candidates with payment card (PCI DSS, PA-DSS, P2PE, PFI), financial (GLBA, SOX, SSAE 16) or health care (HIPAA / HITECH) experience.
Interested in learning more about forensic analysis or incident response, we have great teachers in our world-class SpiderLabs colleagues.
Must be willing to participate in relevant professional organizations like OWASP, InfraGard, and ISACA.
Willingness and desire to travel moderate to heavy regional travel is required, opportunities for international travel are available.
Minimum of one year of experience in EACH of the following security disciplines : Application securityInformation systems securityNetwork securityIT security auditingInformation security risk assessment or risk management
Must have one of the following certifications : Certified Information System Security Professional (CISSP)Certified Information Security Manager (CISM)Certified Information Systems Auditor (CISA)GIAC Systems and Network Auditor (GSNA)Certified ISO 27001, Lead Auditor, Internal AuditorInternational Register of Certificated Auditors (IRCA)Information Security Management System (ISMS) AuditorCertified Internal Auditor (CIA)
Trustwave will provide time and training for you to take and maintain industry relevant certifications, we will also provide you success bonuses when you receive said certification.
We prefer college-educated applicants, but at minimum, high school diploma or equivalent is required for employment.
Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.
To All Agencies :
Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave’s policy is to only accept resumes from agencies via the Trustwave Agency Portal.
Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team.
Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.