Previous Job
Previous
IT Security Consultant
Ref No.: 18-00004
Location: Minneapolis, Minnesota
Position Type:Contract
Element Consulting Group has an immediate need for an IT Security Consultant to join our Client's team located in Minneapolis, MN.  This contract is slated to start March 1st and will go through the end of the year.  This is a 3 year project so extensions are likely. 

Job Description:

Our client is seeking a consultant with deep industry knowledge and executive experience to manage and extend the existing strategy/roadmap for IT security capacity over the short and medium term. The roadmap should be developed after analysis and discussion with relevant stakeholders, including IT managers and business leads.
 
In brief, the department is challenged to keep pace with the support, upgrade and build resilience for an array of technology platforms that underpin critical public services, while at the same time, minimizing risk exposure by ensuring proper security controls, processes and personnel are in place.  Pressures to leverage external business partners and cloud service offerings, have greatly increased the complexity of the technical landscape, further diluting the ability to keep pace.  The organization serves more than 1 million residents who have increased demand that county services be delivered outside of traditional hours, and/or via self-service digital government platforms, thereby increasing the need for security.
 
While we recognize that the model has shortcomings, discussions to date about building a security framework among the County’s executives and senior managers have centered on the Gartner bimodal and Pace Layering models. This should serve as a starting point for the project, but not exclusively define the framework for the development of the deliverable.
 
The work should occur in three parts: (1) an Assessment Phase of learning and analysis, including onsite consultation and interviews, (2) a Plan Phase, in the form of a deliverable that includes an assessment and roadmap of recommendations, which the organization can use as a guide over the next three years, and (3) a Mentorship Phase, in the form of guidance and knowledge transfer for a subset of security personnel to carry the plan forward post engagement.

Description of Work to Be Performed and the Specific Skill Sets Needed
  • WORK TO BE PERFORMED:
    • Onsite consultation and interviews with the CIO, business information officers, operations manager, IT division managers and others to understand the current organizational structure, capacity, skillsets, demands and, at a high level, the security capabilities of the county.
    • Development and delivery of the assessment and roadmap deliverable, which outlines the findings of the current state and proposes targets/goals for evolving security over the next three years. This report must include but is not limited to, recommendations in the following areas:
      • Resourcing
      • Workforce planning
      • Vendor utilization
      • Cloud utilization
REQUIREMENTS:
  • Skill Set A: Deep knowledge and experience of IT and Information Security (executive level, ideally CISO) within a large, preferably public sector, organization.
  • Skill Set B: Strategic planning experience, directing organization’s Information Security posture for regulations including HIPAA, MN Data Practices Act, and PCI
 Candidates authorized to work in the US are encouraged to apply; Element Consulting Group is not sponsoring or transferring work visas at this time. Due to client requirements, we are not able to work with third party employers on this opportunity.

Element Consulting Group offers an attractive benefits package including medical, life, dental & vision insurance, health saving account, 401(k) with match and more!