Cyber Security Consultant

Overview

FM Global is a leading commercial insurance company that provides risk management and loss prevention services through a unique combination of engineering, underwriting and claims. We work to ensure business continuity and safeguard our clients’ properties with seamless, worldwide coverage and property loss prevention engineering solutions.

FM Global is looking for a Cyber Security Consultant based in São Paulo - Brasil. This role will also be supporting Monterrey, Mexico. The Cyber Security Consultant is considered the cyber security subject matter expert (SME) and is responsible for supporting their assigned Operation(s) and/or Division and their clients with cyber risk assessments encompassing information security, physical security and industrial control systems. Consultants may be asked to assist clients in interpreting risk assessment results and validating their plans to address identified cyber risk issues. Consultants will also collaborate with the cyber team in the development, implementation and ongoing improvement of products and services, while gaining understanding of the company's business.

Responsibilities

• Build and entrench credibility with clients on matters of cyber security.
• Work directly with clients through the process of assessing and understanding their cyber risk.
• Work directly with clients in interpreting risk assessment results and validation of plans to address specific cyber risk issues.
• Provide expertise to account managers and engineers as well as external clients on cyber risk management and mitigation.
• Collaborate with the cyber team in the development, implementation and ongoing improvement of cyber assessment tools, services, and business processes.
• Assist with internal training of client facing persons in communicating and understanding fundamental cyber security practices, risks, and recommended mitigation tactics.
• Act as an external spokesperson for cyber in support of our efforts and initiatives.
• Responsible for staying abreast of industry standards and trends and maintaining relevant expertise.

Qualifications

• Minimum of 8 years of experience working in information technology with at least 5 years specifically working in the information/cyber security field
• Industrial control systems familiarity preferred, but not required
• Experience with one or more of the following: security risk assessments; development of enterprise security policies; cyber security risk consulting; or incident management
• Strong knowledge of operating systems and networks
• Solid knowledge of computer vulnerabilities, hacker methodologies and other threats
• Strong knowledge of widely recognized cybersecurity risk frameworks (ie; NIST, ISO etc.) and how to apply them within enterprise organizations
• Experience working with enterprise-level information security programs, including governance, risk assessment, policy/standards, technical controls, oversight and assurance, risk treatment, and security education/awareness
• Ability to use various trusted sources of information (articles, webinars, internet, etc.). This is to gain accurate and updated knowledge on cybersecurity and recommend appropriate solutions for FM Global
• Excellent verbal, written and presentation skills. Exemplary consultative skills a must!
• Solid interpersonal and organizational skills; attention to detail
• Strong collaboration and decision-making skills
• Travel required on regular basis (South America and Mexico)
• Must be fluent in English and Spanish