Principal Information Security Consultant

Job Description

The Principal Information Security Consultant shall be the primary technical liaison between our clients and our internal security teams. In this critical role, the consultant will leverage their deep understanding of information security concepts and technical expertise to bridge the gap between client needs and the specialized teams, including Security Operations Center (SOC), Vulnerability Assessment and Penetration Testing (VAPT), Azure Security, and Governance, Risk, and Compliance (GRC). This is an individual contributor role with no direct reports or managerial responsibilities.

Key Responsibilities

• Act as the primary point of contact for clients, translating their information security requirements and concerns into actionable tasks for CyberGates internal teams.
• Provide expert guidance and consultation to clients on a wide range of information security topics, including threat landscapes, best practices, and emerging technologies.
• Collaborate closely with SOC teams to understand incident response activities, provide client-facing updates, and help clients interpret security alerts and reports.
• Work with VAPT teams to articulate client scope, interpret vulnerability reports, and advise clients on remediation strategies and prioritize findings.
• Liaise with Azure security specialists to understand cloud security posture, discuss architecture, and provide recommendations to clients for securing their Azure environments.
• Engage with GRC teams to ensure client compliance needs are met, assist in policy development, and help clients navigate regulatory frameworks.
• Conduct technical deep-dives and provide high-level architectural insights to both clients and internal teams to facilitate effective security solutions.
• Develop and deliver clear, concise, and technically accurate documentation, reports, and presentations for clients and internal stakeholders.
• Stay up-to-date with the latest information security trends, vulnerabilities, and technologies to provide proactive and informed advice.
  
  

• Extensive experience in information security, with a strong foundational understanding across various domains (e.g., network security, application security, cloud security, incident response, compliance).
• Demonstrable technical proficiency to effectively communicate and collaborate with specialized security teams (SOC, VAPT, Azure, GRC).
• Proven ability to translate complex technical information into understandable terms for both technical and non-technical audiences.
• Exceptional client-facing communication and interpersonal skills, with a track record of building strong client relationships.
• Strong analytical and problem-solving abilities, with a keen eye for detail.
• Ability to work independently and manage multiple client engagements simultaneously in a fast-paced environment.
• Relevant industry certifications (such as CISSP, CISM, CISA, CCSP) are highly desirable.