Grant Thornton LLP IT Security Manager in Albany, New York

Grant Thornton is seeking a Manager to join its Risk Advisory service line and take an active role in engagement execution, project management and key business development activities.

Grant Thornton Public Sector helps executives and managers at all levels of government maximize their performance and efficiency in the face of ever tightening budgets and increased demand for services. We give clients creative, cost-effective solutions that enhance their acquisition, financial, human capital, information technology, data analytics, and performance management. For more information, visit

At Grant Thornton, our professional staff applies traditional, cutting-edge approaches and methods to a variety of analyses. As part of our team, the Manager will utilize various methodologies and models to execute client projects.

ESSENTIAL DUTIES: * Performing cyber security assessments to detect and identify weaknesses in the security posture of an organization's information technology environment (platforms, applications, infrastructure, etc.). * Developing recommendations and action plans to reduce, mitigate, and/or remediate the impact of identified vulnerabilities; * Conducting vulnerability scans, evaluating results, and delivering comprehensive reports to communicate findings and impact to both technical and non-technical audiences * Executing targeted attacks to simulate the methods and activities of a malicious attacker from both internal and external entry points; and * Other desired technical skillsets include a combination of the following: * Network scanning * Active and passive penetration testing * Social engineering and phishing campaigns * Wireless security * Mobile device security management * Security Authorization and Accreditation (SA&A) * Independent Verification & Validation (IV&V) * Privacy Impact Analysis * Cybersecurity strategy and governance assessments * Cybersecurity risk assessments * Cyber best practices and benchmarking * Vulnerability management * Disaster recovery and contingency planning * Compliance testing with regulatory requirements and industry frameworks * Security Test & Evaluation (ST&E) * Perform engagement management responsibilities, including performance reviews, task delegation, project scheduling, project financials, quality review and client management. * Meet or exceed sales targets for new and follow-on work. * Manage business development activities, such as proposals, capture, account teams, whitepapers, conferences, and/or other thought leadership materials. * Meet or exceed targeted billing hours (utilization). * Act as performance manager (coach) for up to four coachees outside of engagement responsibilities. * Interview campus and/or experienced candidates.

  • 6 years of information security experience.
  • Working knowledge of information security control frameworks including NIST Special Publications, ISO, FISMA, COBIT, etc.
  • Preferred certifications include – Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Security , Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), Certified Penetration Tester (CPT), or Certified Internal Auditor (CIA).
  • Bachelor’s Degree required from an accredited college or university in a related field.
  • Ability to obtain and maintain certain job-related certifications if no job-related advanced degrees.
  • U.S. citizenship may be required. Ability to work in the United States indefinitely required.
  • Travel may be required.
  • Coach and mentor junior staff members.
  • Ability to work overtime required on occasion.
  • Ability to sit in an office environment for long periods of time.
  • Ability to obtain and maintain a security clearance.
  • Ability to communicate clearly in writing and verbally.
  • Ability to obtain and maintain firm independence and abide by firm ethics requirements.
  • Meet or exceed continuing professional education (CPE) requirements. Grant Thornton LLP is the U.S. member firm of Grant Thornton International, one of the six global accounting, tax and business advisory organizations. Grant Thornton’s Public Sector, based in Alexandria, VA, is a global management consulting business with the mission of providing responsive and innovative financial, performance management and systems solutions to governments and international organizations. Visit Grant Thornton’s Public Sector at

It is Grant Thornton’s policy to promote equal employment opportunities. All personnel decisions, including, but not limited to, recruiting, hiring, training, promotion, compensation, benefits and termination, are made without regard to race, creed, color, religion, national origin, sex, age, marital status, sexual orientation, gender identity, citizenship status, veteran status, disability, or any other characteristic protected by applicable federal, state, or local law.

Title: IT Security Manager

Location: New York-Albany

Requisition ID: 041332