Job Information
MSys Inc. Technical Security Risk Assessment & Penetration Testing Lead - Hybrid in Raleigh, North Carolina
WebCam Interview Very long term project (Initial PO for 1Year -Expect togo up to 4+ years ) *Hybrid (3days per week Onsite at Raleigh-NC *
Description
We are seeking an experienced Lead Consultant with strong technical expertise and the leadership skills necessary to develop the assessment strategy, manage the technical risk assessment team, and ensure consistent, high-quality execution across all counties.
This initiative covers county IT infrastructure including servers, desktops, networks, firewalls, user access provisioning, MFA, VPNs, security hardening procedures, vulnerability management, and patch management processes.
The Technical Security Risk Assessment & Penetration Testing Lead Consultant will be responsible for:
Designing and conducting technical security assessments
Performing penetration testing activities
Creating standardized methodologies and templates
Managing the assessment team's assignments and project timelines
Providing clear, non-technical communication of complex security topics to business leaders, CMS and stakeholders
Skills/Requirements:
Skill Required Years
Experience in cybersecurity risk assessments and penetration testing. Required 7 Years
Lead and perform technical security risk assessments on county IT environments (servers, desktops, networks, firewalls, IAM, MFA, VPNs, patching pro Required 5 Years
Conduct internal/external penetration testing, vulnerability identification, and exploit validation Required 7 Years
Develop a repeatable assessment methodology, templates, testing procedures, and reporting formats for use across 100 counties. Required 5 Years
Manage and coordinate assessment team workloads, assignments, schedules, and deliverables. Required 7 Years
Create and maintain project plans, timelines, and progress reports. Required 7 Years
Familiarity with NIST, CIS Controls, ISO 27001, and related frameworks. Required 3 Years