You will join an international team of cyber security experts helping our clients with all aspects of their cyber security programs, and contributing toward their business resilience.
You will be flexible and ready to adapt to a constantly changing environment, sharing your time between reviewing cyber strategies, advising stakeholders, leading workshops, as well as supporting business development and marketing.
Immediate exposure to top tier clients and excellent opportunities for personal and professional development.
Since you will be working directly with clients, some travel will be required.
What is in it for you?
Leverages advanced knowledge of industry trends around cyber risk management to develop actionable insights into a client's cyber environment.
Professional and inclusive environment where your career path really matters and is supported in our global organization. Staff development is paramount to our organization.
Great environment with close knit, energetic and supportive colleagues.
Learning opportunities to develop the skills to navigate whatever comes next.
We will count on you to:
Support in end-to-end delivery of the cyber risk consulting projects which includes cyber risk assessment, cyber security incident response and table top exercise, cyber security initiatives, cyber risk quantification and others:
Perform cyber security assessments for clients (e.g. security risk assessments, information security policies and processes/procedures review etc.)
Evaluate and analyze threat, vulnerability, impact and risk to security issues discovered from security assessments
Advising on the cyber security incident response process, creating and delivering table-top exercise, incident response plans and playbook
Have excellent understanding of cyber security tools across the different environments
Evaluate and recommend information security technologies to improve Marsh’s clients security posture
Review clients’ compliance through an on-going security and audit review
Any other technical duties as assigned
Conduct research on the client’s cybersecurity risk areas.
Explain the technical details and how vulnerabilities can be remediated.
Understand different domains within cybersecurity space, stay abreast of current business and industry trends relevant to the client's business.
Contribute in research support for building a robust deliverables.
Provide advisory support to client on the development of appropriate cyber security initiatives, and the presentation of the initiatives to business stakeholders.
Assist in the implementation of the cyber security initiatives
Assist with technical implementation across various domains, including security incident management, vulnerability management, risk management, security standards and frameworks, for example ISO 27001 and NIST
Strong understanding of the cyber toolset landscape and the control environment
Provide up to date knowledge on the cyber threat landscape
Ensure and assist cyber security compliance to appropriate policies, standards and regulation for clients
Works across client’s corporate, government, business and technical teams to ensure accurate scoping and services
Support the team towards constant innovation of cybersecurity approach and go-to-market strategy, understanding current industry and market issues/trends and assist in positioning Marsh’s security solutions to clients
Develop and maintain long-term relationships and networks with clients and internal stakeholders
Identify pre-engagement requirements (goals, budgeting, timing, etc.) and assist with the scoping of work
Increase exposure of Marsh’s offerings and capabilities
Requirements
What you need to have:
Bachelor degree in Computer Science or Engineering or any relevant discipline
8+ years professional experience in cybersecurity
A proven track record in delivering cyber security projects
Have excellent client management and communication skills
Should be a self-starter who can challenge status quo by bringing in fresh ideas that help improve the practice deliverables
Strong analytical problem solving skills and experience, ideally gained in the management-consulting sector although other sectors could be relevant
Experience in leading multiple projects from inception to completion with high quality of delivery in a complex and challenging environment
Smart, collaborative, relationship and outcome focused with the ability to make decisions where ambiguity exists
Ability to demonstrate sound judgment in the prioritization of competing work assignments, escalation of issues and the formulation of solutions
Effective organization skills with key attention to detail and delivery of high quality documentation with the ability to implement/influence change
Strong sense of business ethics and principles
Excellent English language skills, both verbal and written with the ability to communicate technical matters to a non-technical audience
Fluency in Chinese and English
Experience in Crisis Management will be desirable
Travel will be required for this role
What makes you stand out:
Professional security certifications (e.g. CISA, CISM, CISSP, CRISC, CBCP)
Risk management certifications
A blend of technical and risk management skills
Commitment to providing high-level client service
Ability to manage in a fast pace environment
Ability to align the information security requirements to the business strategy and goals
Strong interpersonal and stakeholder management skills
Excellent communication skills with the ability to communicate technical matters to a non-technical audience
Significant experience working with the senior management
Significant experience in the cybersecurity consulting or corporate field in Taiwan, as well as a strong knowledge of local regulations