About UsSophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.
Role SummaryCybersecurity risk advisor consultants not only identify cybersecurity risks and propose solutions but also lead projects for clients facing increasingly sophisticated security threats. We provide comprehensive support through activities such as helping strengthen incident response preparedness by assisting with the development of policies, delivering various training sessions and advisories, creating procedures to enhance incident response frameworks, and conducting tabletop exercises.
In addition to experience in system administration and operations, candidates should possess the ability to design and facilitate training and workshops, have a solid understanding of cybersecurity principles, recognize the importance of protecting an organization's infrastructure and information, and be aware of the practical limitations of implementation. Even those without prior consulting experience but with a strong interest in cybersecurity will find opportunities here to gain valuable experience as consultants.
サイバーセキュリティリスクアドバイザーコンサルタントは、日々巧妙化するセキュリティ脅威に対面するお客様に対し、プロジェクトをリードしながら、サイバーセキュリティ上のリスクを特定し、課題解決のための推奨改善案を提示するだけなく、セキュリティガバナンスの分野の専門家としてあらゆるお客様のセキュリティ向上に対する活動に対して、規程策定支援や各種トレーニング、アドバイザリー、インシデント対応態勢強化のための手順策定や机上訓練などを通して、サイバーインシデントに備えた対応強化支援などの活動を通してご支援を行います。
システム管理、運用の経験はもちろんのこと、トレーニングやワークショップなどを企画するファシリテーターとしての能力、サイバーセキュリティについての専門的な理解、組織のインフラや情報を保護することの必要性、それを実装するための制限事項についての理解、知識をお持ちの方など、コンサルタントの経験がない方でもサイバーセキュリティに興味を持ち、コンサルタントとしての経験を積みたい方にも活動の場所があります。
