Security Governance Consultant

About The Position

Requirements

• Solid verbal and written communication skills, organizational skills, and attention to detail.
• Ambitious and goal-oriented, with initiative to work until job is complete.
• Ability to maintain composure and professionalism in an interrupt-driven environment.
• Ability to manage multiple and changing priorities/tasks.
• Ability to simultaneously manage multiple diverse client engagements.
• Ability and initiative to work collaboratively or independently as a given situation dictates.
• Demonstrated passion for continuous self-study and thought leadership, proactively staying current with emerging cybersecurity threats, evolving regulatory requirements, and advancements in AI/ML to inform risk-based recommendations and GRC strategy.
• Solid documentation experience with Microsoft® Word, Excel and PowerPoint.
• Bachelor’s degree or equivalent military or work experience.
• Minimum 5 years’ professional experience in IT, cybersecurity, compliance, risk, or a related field.
• At least one of the following certifications: CISSP, CISM, CCSP, AWS Certified Security – Specialty.
• Familiarity with common frameworks and regulations such as NIST CSF 2.0, SOC 2, ISO 27001, PCI DSS, HIPAA, CMMC.
• Must be a US Citizen.

Responsibilities

• Support Principal and Senior Consultants in the delivery of cybersecurity and compliance engagements, gaining hands-on experience in consulting, client interaction, and advisory practices.
• Conduct gap analyses against frameworks and requirements such as NIST CSF 2.0, SOC 2, ISO 27001, PCI DSS, HIPAA, and CMMC - crosswalking when applicable.
• Assist in identifying, assessing, and documenting security and compliance risks.
• Contribute to the preparation of client-facing materials, helping communicate compliance requirements and risk findings to technical and non-technical stakeholders.
• Support the development of strategic, operational, and tactical recommendations tailored to each client to remediate identified risks and improve the client’s security posture and compliance position.
• Contribute to the development of detailed strategic security roadmaps that prioritize disparate and competing remediation recommendations under senior direction.
• Assist in drafting and refining client security policies, standards, baselines, and guidelines using industry best practices and compliance requirements.
• Work with other consultants in a collaborative setting to support and assist the execution and delivery of consulting and advisory services while building foundational client service skills.
• Deliver tasks and projects on time and within budget while meeting critical success metrics to maintain high client satisfaction.
• Leverage AI tools responsibly and creatively, under senior guidance, to improve efficiency, support process automation, and enable accuracy, security, and alignment with client expectations.