Security, Risk And Compliance Consultant

WHAT WE DO

Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We're known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.

We are actively looking for professionals in the following areas:

• Compliance
• Information Security
• Risk Management
• Data Privacy

The ideal candidate's experience may include but is not limited to the following:

• Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
  • Sample projects/programs could include but are not limited to:
    • Compliance framework mapping and implementation,
    • Regulatory mapping and implementation
    • Audit, risk or regulatory remediation management,
    • Readiness for new laws and regulations,
    • Risk, Compliance or Information Security risk reporting and monitoring
    • Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
    • Design and enablement of cyber controls functions and processes
    • Change management related to regulatory adoption or compliance changes
    • Audit or certification readiness
  • Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
  • Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
  • Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
  • Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
  • Management of regulatory, internal or external audits, or experience as an auditor
  • Projects or roles requiring coordination across lines of defense working with technical, business, compliance, Risk and audit teams to deliver solutions
  • Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
  • Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM

QUALIFICATIONS

Required-

• Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
• Hungry, Humble, Smart
• Demonstrated business and technology acumen
• Strong written and verbal communication skills
• Understanding and experience solving real business problems
• Proven track record of delivering results
• Experience working with and/or leading a team
• Ability to work across industries, roles, functions & technologies
• Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)

Preferred-

• Bachelor's degree
• 8+ years professional experience
• Experience across our service offerings