Security Governance Consultant

This is a fully remote position, open to applicants in United States.

📋 Description

• Assist Principal and Senior Consultants in executing cybersecurity and compliance projects.

• Perform gap analyses against various frameworks and requirements, including NIST CSF 2.0, SOC 2, ISO 27001, PCI DSS, HIPAA, and CMMC, applying crosswalking where relevant.

• Aid in the identification, assessment, and documentation of security and compliance risks.

• Play a role in preparing materials for clients, effectively communicating compliance needs and risk assessments to both technical and non-technical audiences.

• Support the formulation of strategic, operational, and tactical recommendations customized for each client to address identified risks and enhance their security posture and compliance standing.

• Contribute to creating comprehensive strategic security roadmaps that prioritize various remediation initiatives under the guidance of senior leadership.

• Assist in drafting and refining client security policies, standards, baselines, and guidelines based on industry best practices and compliance mandates.

• Collaborate with fellow consultants in a team-oriented environment to facilitate and deliver consulting and advisory services, simultaneously developing essential client service skills.

• Ensure timely and budget-compliant delivery of tasks and projects, meeting critical success metrics to uphold high levels of client satisfaction.

• Utilize AI tools in a responsible and innovative manner, under senior supervision, to enhance efficiency, support process automation, and ensure accuracy, security, and alignment with client expectations.

⛳️ Requirements

• Bachelor’s degree or equivalent military or professional experience.

• A minimum of 5 years of professional experience in IT, cybersecurity, compliance, risk management, or a related domain.

• Possession of at least one of the following certifications: CISSP, CISM, CCSP, AWS Certified Security – Specialty.

• Understanding of common frameworks and regulations such as NIST CSF 2.0, SOC 2, ISO 27001, PCI DSS, HIPAA, and CMMC.

• Must be a US Citizen.

🏝️ Benefits

• Health insurance.

• 401(k) matching.

• Flexible work hours.

• Paid time off.

• Remote work options.