Blackstone Consulting, Inc.’s Post

Hiring a security leader? That can be tricky. Many people serving in those roles focus first on tactics and operational capabilities. Hiring a true security executive or CISO can be key to avoid building unnecessary capabilities that can add expense and slow down the business. This is especially important in a modern tech company who use leading practices that drive change. Things to consider? • Can they understand the business and align security to it? • Do they ground in risk (asset + threat + vulnerability) and not just vulnerabilities? • Can they understand your market and compliance drivers -- navigating them only doing what's necessary at the right time? • Can they identity security features for your products that create competitive advantage? Building too much too soon is difficult to walk back. Your customer contracts will enforce it and it's difficult to explain why you stop doing something that might have been avoided. The wrong hire can compound this challenge whereas a strategic CISO can drive value. #ciso #hiring #healthtech #strategy

If safeguarding your business is a priority but hiring a full-time security director stretches your budget, consider the impactful alternative: a virtual security director. This advanced solution offers expert guidance and oversight on security issues, removing the necessity of a permanent hire. Don't hesitate to contact us for more details and support. #innovation #creativity #BusinessContinuity #SecurityManagement

If you've thought about hiring any of the following skillsets, please send me a DM or a text to see how we can help. We've talked to a ton of amazing people that fall into these buckets lately that we can't place with existing clients. - CISOs (mostly at SMB companies/SaaS) - many extremely bright folks here - Mid-level Incident Response folks with TS-SCI in D.C. area - Threat Intel in Houston - GRC Consultants (HITRUST/SOC/PCI QSAs) at multiple levels - Cybersecurity outside sales (services/product) - DFIR consulting (Senior Consultant to VP) - Generalist Cybersecurity Director through VPs from corporations including financial services & staffing ....and as ALWAYS, I have a huge pipeline of bright entry-level people looking for their big break from SecOps to GRC. #cybercareer #cybersecuritycareer #cybersecurity #cyber #infosec #informationsecurity #infoseccareer #infosechires #infoseconnect #infosecconnect #infosecjobs #cyberjobs #informationsecurityjobs #securityhiring #cyberhiring #cybersecurityhiring #infosechiring #GRC #securitycompliance #ITcompliance #CISO #CISOs #CISOlife #cyberexecutives #incidentresponse #DFIR #forensics #forensicinvestigation #threatintel #CTI #cyberthreatintelligence #director #VP #breachresponse #ransomwareresponse

Many people have lost their jobs in these dark times that we live in. Cisco just announced they will lay off around 4,000 people. This thread is a chance for anyone who is job hunting to tell your story. Please share your: Name Location where you want to work or remote How long you have been out of work Describe the job you want For me: My name is Nathan Chung. I live in Austin, Texas. I have been without full-time work and health insurance for 100 days. I seek a security engineer role performing vulnerability management, risk management, maintaining PCI-DSS compliance, and protecting organizations from security threats. How about you? Please share your story in the comments. #opentowork #jobsearch #hireme #jobhunt #jobseeker #jobsearching

Exciting news! If you're an experienced MSP professional looking to take your career to the next level in Nottingham, we have some outstanding opportunities waiting for you! 🌟 🔸1st Line Engineer 🔸2nd Line Engineer 🔸Account Manager 🔸Business Development Manager 🔸Cyber Security Analyst 🔸Cyber Security Consultant 🔸Project Coordinator 🔸Process Integration Lead Don't miss out on these amazing opportunities to join our outstanding teams! Apply now and take the next step in your career. Link in the comments ⬇️ #MSP #ManagedServices #ITJobs #Nottingham #TechCareers

As we get into Q4, Hampton North are looking to take on one (maybe 2 if we add headcount) more client to go through 'Build Mode' this year. "What's Build Mode, Stuart?" "Great question. Build mode is where a client is looking to hire 5 or more security professionals in a fairly short period of time. We embed yourself into the hiring process, and get you access to the very best talent available, in a very short window." "Can you give us some recent examples?" Yes, here's 3 this year... Privately owned SaaS Company - Hires made; Director Security Engineer, Director Security TPM, 2 x Application Security Engineers, 2 x Cloud Security Engineers, 1 x GRC Analyst Series D Cyber Security Company - Hires made; Director of Threat Research, Sr Director of Sales, Sr Director of Customer Success, 4 x AE's Series E Cyber Security Company - Hires made; GRC Analyst, Site Reliability Engineer, 2 x Software Engineers, 3 x Solution Engineers For more info on 'Build mode' and how this can help your business fill critical hires quickly, follow the link in comments. If you have any questions on how this all works, reach out to me at stuart.mitchell@hamptonnorth.com #BuildMode #HamptonNorth #SecurityHiring

Team, I'm curious. Are we bringing in cyber managers in the healthcare space, including OT, expecting the CISSP, wanting them to design and strategize while managing 5 folks? At $180k I've 300 people actively upskilling to compete for cyber work and many more leaders who would be alarmed that we would saddle a cyber “manager” with this. What are we doing? I value your thoughts. According to NIST, and the NATIONAL INITIATIVE FOR CYBERSECURITY CAREERS AND STUDIES, there's no such thing as a cyber manager. https://lnkd.in/gMHBfSvJ https://lnkd.in/gG2CF94R #ciso #cybersecurity #infosec

⚠️⚠️⚠️ 📢 #EmergencyManagement #Exercise connections I have a colleague looking for a new Exercise Program Manager in the critical infrastructure space. They have a basic program in place with some good exercises completed, but they’re ready to grow the program with better governance and a after action/corrective action program. They also want to expand their active violence and cyber/ransomware exercises. There is also a future state desire to build a Red Team program. LOTS of potential here, and working for a passionate and knowledgeable senior leader (aka… the program has senior leader/executive support). Would need to be in the Northeast… Connecticut or nearby. Job isn’t public yet, but message me and I can give you a little more info and let the hiring manager know you’re interested. (Important… they’re looking for a Full Time Employee not a contractor. Current pay range is worth the level of effort and innovation they’re asking for) #emjobs #preparedness #training #crisismanagement

"But Naomi, what's the business case for hiring entry-level in #cybersecurity?" What's the business case, you ask? I'll tell you. Information Security teams should always be excellent at the fundamentals of information security. These fundamentals include asset management, configuration management, change management, identity & access management, and security awareness (among others). These are not "one and done" things. Your teams should always be doing these fundamentals, day in, and day out. And guess what? Entry-level hires can ABSOLUTELY do this work, especially if there are established procedures for them to follow and tools for them to use. It's NOT that difficult. All you need is a strong work ethic, the ability to learn, and great critical thinking and executive functioning skills. Don't believe me? Well, let's think about this another way. Do you want your senior people doing this work? I wouldn't want them to. After all, they'd be quite bored and (not to mention) extremely overpaid. I *want* to hire entry-level people to do this work. My senior folks should be doing the complicated stuff and making the difficult decisions, not the "easy" stuff. So make your job easier. Make your team happier. Keep your business secure. Hire an entry-level person to help your team do the fundamentals. You'll have more time to do the projects you've been holding off on doing. What's the business case for hiring entry-level team members? That's easy. It's simply good for the business. Break down the gates. 🔥🔥 #informationsecurity

Looking for a professional team that can protect your business or organization? Let New Age Protection handle your recruiting, vetting, and hiring for commercial security. #businesssecurity #BusinessSafety #commericalsecurity #protection #security #cyber #cybersecurity #AI #computerscience #it #informationtechnology #business #datasecurity #data #dataprotection #personalsecurity #informationsecurity #IndustrialSecurity #logistics #operationsmanagement #engineering #tech #leadership #NewAge