WHAT WE DO
Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We're known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.
We are actively looking for professionals in the following areas:
- Compliance
- Information Security
- Risk Management
- Data Privacy
The ideal candidate's experience may include but is not limited to the following:
- Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
- Sample projects/programs could include but are not limited to:
- Compliance framework mapping and implementation,
- Regulatory mapping and implementation
- Audit, risk or regulatory remediation management,
- Readiness for new laws and regulations,
- Risk, Compliance or Information Security risk reporting and monitoring
- Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
- Design and enablement of cyber controls functions and processes
- Change management related to regulatory adoption or compliance changes
- Audit or certification readiness
- Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
- Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
- Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
- Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
- Management of regulatory, internal or external audits, or experience as an auditor
- Projects or roles requiring coordination across lines of defense working with technical, business, compliance, Risk and audit teams to deliver solutions
- Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
- Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM
- Sample projects/programs could include but are not limited to:
QUALIFICATIONS
Required-
- Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
- Hungry, Humble, Smart
- Demonstrated business and technology acumen
- Strong written and verbal communication skills
- Understanding and experience solving real business problems
- Proven track record of delivering results
- Experience working with and/or leading a team
- Ability to work across industries, roles, functions & technologies
- Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)
Preferred-
- Bachelor's degree
- 8+ years professional experience
- Experience across our service offerings