I am a naval information professional officer with 4.5 years of experience working in IT ranging from IAM, security infrastructure, vulnerability management, information assurance, and SOC/NOC operations. For certs/education I have a BS in EE, I'm nearly finished with an MS in Cybersecurity, and I have CISSP, SEC+, AWS-SA, AWS-CCP, and a TS/SCI.
I'm still thinking about where I want my career to go but I would really like to live in NYC and work in a GRC or IT risk related role after the navy. Possibly move into management further down the line. I have started to receive some interest from consulting firms and I'm wondering if consulting would be a good next step after the navy. Though I'm not totally keen on traveling M-TH, I've had worse schedules in the navy and I could tolerate it.
Do the Big 4 (Deloitte, PWC, KPMG, EY) have a good reputation in the cyber security community? I'm a little worried that Big 4 work is not seen as technical and would not be as valued by the security community. Would working at a Big 4 be similar to working at a more IT oriented consulting firm (i.e. Accenture, IBM, BAH)? Should I skip consulting entirely and go straight into a security job in NYC?