Security Consultant

Who is Tenable?
Tenable ® is the Exposure Management company. ‎40,000 organizations around the
globe rely on Tenable to understand and reduce cyber risk. Our global
employees support ‎60 percent of the Fortune ‎500, ‎40 percent of the Global
‎2000, and large government agencies. Come be part of our journey!
What makes Tenable such a great place to work?
Ask a member of our team and they 'll answer, "Our people!" We work together
to build and innovate best-in-class cybersecurity solutions for our customers;
all while creating a culture of belonging, respect, and excellence where we
can be our best selves. When you're part of our #OneTenable team, you can
expect to partner with some of the most talented and passionate people in the
industry, and have the support and resources you need to do work that truly
matters. We deliver results that exceed expectations and we win together!
Your Opportunity:
In addition to the basic technical capabilities of a Security Consultant, the
Security Consultant is responsible for architecting a Vulnerability Management
solution leveraging Tenable solutions based on established industry standards
and Tenable best practices. Security Consultants should be able to assess and
advise clients on best practices for reducing Cyber Exposure risks across
their entire attack surface.
Your Role:
* Executing client engagements that exceed expectations based on strong understanding of the client 's business and their unique needs by:
* Providing recommendations on architecture, deployment, and configuration of Tenable solutions
* Providing best practices regarding usage of Tenable One, Tenable.sc, Tenable.ad Nessus and Tenable.io in client environments
* Advising clients on process best practices enabled by Tenable solutions
* Advising on integration scenarios to clarify desired workflows, outcomes and fit within a client security blueprint in order to scope and initiate integration work
* Research user needs and requirements and identify areas where changes can make maximum impact
* Creating additional value for clients through continual insights and consultative advice based on experience with the Tenable products, the client, their industry, established standards, and industry and company best practices
* Assisting clients with the development of a Cyber Exposure Deployment Roadmap
* Delivering advisory workshops such as the Cyber Exposure workshop
* Assist clients with installing, configuring, and operating Tenable solutions.
* Analyze scan results and troubleshooting failed scans
* Develop scan policies, assets, scans, dashboards and reports to meet client needs.
* Develop and maintaining positive partnerships with clients
* Assist client with upgrades and migration to new hardware or software versions
* Training client staff on implementation, configuration and best practices usage of Tenable solutions as needed
* Support the Professional Services Engagement manager in pre- and post-sale business development activities to include:
* Conduct in-depth needs analysis (via phone, email or in person) with prospect technical staff to determine technical requirements and specifications of post-sales engagements in line with Tenable best practices.
* Support and or write the development of Statements of Work.
* Help identify further revenue opportunities by promoting deeper and broader deployment of Tenable solutions and services
* Liaise with Tenable Technical Support when dealing with an onsite client escalation
* Support the enablement of Tenable partners by training, mentoring, certifying, and inspecting.
* Documentation of methods and best practices for use internally and with clients.
* Contribute to the development and maintenance of internal delivery methods and tools.
* Mentor fellow consultants to spread best practices, tactics and strategies for improving client experiences
* Willing and able to travel to client sites up to ‎50%
What You'll need:
* Recent in-depth experience performing vulnerability scans, configuration audits, security monitoring with core Tenable products, or other industry solutions
* Deep understanding of Cyber Exposure to include the lifecycle states as well as network asset classes.
* In depth knowledge of networks, Linux/Unix and Windows administration, patch deployment and system configuration
* Outstanding written and verbal communications skills
* Understanding of security principles, policies and industry best practices
* Knowledge of Auditing and Configuration frameworks such as ISO ‎17799, CIS, PCI, GLBA and HIPAA preferred
* CISSP and CCSP certifications preferred
* Familiar with developing integrations via REST API using known coding languages such as Python
* Understanding and knowledge of AWS and Azure cloud environments
* OSCP certification preferred; knowledge in offensive security and penetration testing using Kali Linux
* Experience with using, customizing or developing open source security tools
* Experience in Active Directory threats and security
* Experience in multiple programming languages and shell scripting preferred
* Understanding of OWASP and common exploitable cyber security threats
* Understanding of common control systems such as firewalls, blacklists, ACLs and common network monitoring tools such as IDS/IPS
* Understanding of wireless LAN protocols and various WLAN vulnerabilities and attacks
* Understanding of social engineering techniques that can bypass control systems
* Knowledge of Cyber Threat Landscape, common breach techniques and associated vulnerabilities
* Experience with Metasploit and related tools commonly used to exploit vulnerabilities
* Knowledge and understanding of SCADA and OT systems a plus
* Consulting skills with an emphasis on client management, objection handling and a commitment to client success.
* Bachelor's degree OR ‎8+ years experience in IT, security, risk management or professional services
If you 've reached this point, and you're still not sure if you should
apply…..Just do it! We're human and we don't fit a perfect mold. Having
diverse backgrounds, experiences and perspectives, that's a good thing! If
you're coming from outside of the cyber industry - great! If you're looking to
try something new - awesome! All we ask is you bring passion to all that you
do, crave creativity and innovation, and embrace the hard work of gaining new
skills and accepting big challenges.
We 're committed to promoting Equal Employment Opportunity (EEO) at Tenable
- through all equal employment opportunity laws and regulations at the
international, federal, state and local levels.