Job Details

Senior Advisory Consultant, Risk (CONSULTANCY)

ANYWHERE, United States
  • Employment Type: Direct Hire

Do you have several years of consulting experience within a Big 4 and are looking to transition to a highly entrepreneurial and growing security advisory practice? Our client, a leading global professional services firm, is looking for a Senior Consultant to join their Security Advisory Services team. This team is experiencing significant growth in the areas of risk, governance and compliance and is looking for highly motivated and team-oriented consultants. The organization is structured much like that of the Big 4, with a more entrepreneurial and united culture. There will be an aspect of business development involvement and expectation, but there is no quota for this role or at any level within the advisory practice. Send resumes to [email protected]

Position Description:    

  • As part of an industry-leading team, will help empower results for our clients by delivering innovative and effective solutions supporting Risk

Position Overview:

  • This role will be part of a cross-functional Proactive Security Services team that executes, and delivers various Security Advisory engagements for our clients 

The responsibilities of this position include but are not limited to the following:

  • Executes cyber security consulting engagements for various clients
  • Supervises engagement and junior level team members during client engagement execution, ensuring timely progress, achievement of objectives, and delivery quality 
  • Assists with various practice client engagement pursuit initiatives, including the development of client engagement proposals
  • Assesses and investigates client IT security programs and environments via interviews and technical information analyses
  • Understands existing client processes and controls and associated risks with respect to electronic and non-electronic information security
  • Develops client security programs by reviewing existing programs; conducting comprehensive reviews of threats; evaluating and analyzing relevant data points
  • Architects and designs security solutions (SIEM, IDS, etc.) for client environments
  • Develops Information Security Plans and Policies, customized to client requirements and risk profile
  • Develops incident response plans and procedures, and advises clients on steps to achieve incident response readiness (logging and monitoring configurations, triage and escalation procedures, wider stakeholder liaison, etc.)
  • Advises clients on the implications of data privacy matters from a security perspective
  • Provides recommendations on IT solutions to help clients manage information security risk
  • Assesses IT network and security architectures as they relate to managing identities and access privileges, delegated administration models, workflow and access control models
  • Documents results of security risk analyses and formally present to clients
  • Formulates executive level recommendations related to Information Security strategy
  • Understands current regulatory environment and related implications to security management compliance
  • Enhances team competence by answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members
  • Tracks emerging security practices and contribute to building internal processes
  • Assists with resource management and staffing for the practice

Candidate Qualities:

  • The ideal candidate would have substantial experience in progressively sophisticated roles in information security consulting, coupled with demonstrable experience in various Cybersecurity domains, including risk management, compliance, security strategy, security engineering, and/ or operations 
  • Recent consulting experience with a mid to large size consulting firm/practice would be a plus
  • The position requires a strong, diverse technical background and truly exceptional oral and written communications skills
  • The candidate must demonstrate proven success in working in a team as well as independently and exhibit follow-through to understand root causes of issues
  • This position requires handling multiple engagements with overlapping deadlines; a demonstrated ability to write clear, coherent and precise reports on a multiplicity of complex technical issues is essential. 
  • A collaborative approach is a must, as well as the ability to effectively communicate with a wide range of technical and non-technical personnel
  • Travel is required
  • Security certifications (CISSP, CISA, CISM, GIAC, OSCP) are a plus

Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)