Senior Consultant - Enterprise Risk Management Analyst

Kalles GroupSeattle, WA
2d$150,000 - $220,000Onsite

About The Position

Everyone deserves to be secure. Our mission at Kalles Group is to help secure the future for companies of all shapes and sizes. While our expertise spans multiple disciplines, our method remains consistent: building trust and relationship with people -- whether you are a client, a consultant, or--in this case--a candidate. No matter what role you come from--whether you're an executive or just starting your career-you can expect our highest level of attention and respect. We want to find the right fit for each role, but we also want you to find the right fit for your career. We believe the best way to show you what our team is like is to treat you like you're already a part of it . We hope you'll consider joining our team of experienced professionals who are building their careers at Kalles Group—and having fun while doing it. As a Senior Risk Management Analyst, you will play a key role in shaping and advancing our client’s enterprise cybersecurity risk strategy. Acting as a trusted advisor to senior leadership, you will design and implement comprehensive risk assessment methodologies that strengthen the organization’s security posture while enabling informed business decision-making. You will build scalable frameworks, establish operational standards, and lead cross-functional initiatives that integrate multiple risk domains across technology and business functions. Your work will ensure audit readiness, regulatory alignment, and effective risk governance in a complex and evolving threat landscape.

Requirements

  • 6–8 years of experience in cybersecurity risk management, including leadership of cross-functional initiatives
  • Demonstrated success designing and implementing enterprise-level risk methodologies across multiple domains
  • Experience managing external audit engagements and serving as a primary liaison with auditors and risk stakeholders
  • Proven ability to align risk operations with strategic business objectives through structured planning
  • Bachelor’s or Master’s degree in Information Technology, Computer Science, Cybersecurity, Risk Management, or a related field (or equivalent experience)
  • Strong expertise in industry-standard cybersecurity frameworks (e.g., NIST CSF, ISO 27001, NIST RMF, CIS Controls, SOC 2, PCI DSS)
  • Deep understanding of enterprise risk architecture and integrated control frameworks
  • Experience developing operational standards and optimizing workflows for risk management
  • Advanced capabilities in methodology development and enterprise framework design
  • Excellent stakeholder management and executive communication skills
  • Strong facilitation skills with the ability to drive alignment on complex risk topics
  • Ability to operate autonomously, remove bottlenecks, anticipate trade-offs, and deliver measurable business outcomes

Responsibilities

  • Design and implement enterprise-wide cybersecurity risk assessment methodologies that align with business objectives and regulatory requirements
  • Develop operational standards, quality criteria, and workflows to ensure consistency, efficiency, and audit traceability across risk management processes
  • Integrate controls across multiple technology and business domains to provide comprehensive risk coverage
  • Lead and manage third-party risk assessments, including vendor security evaluations and external audit engagements
  • Serve as primary liaison with external auditors and key risk stakeholders, representing the organization’s cybersecurity risk posture and remediation strategies
  • Make informed commitments within enterprise governance frameworks related to audits, third-party assessments, and GRC platform initiatives
  • Align risk management initiatives with medium-term strategic planning (6–18 months) to support business growth and regulatory expectations
  • Facilitate senior leadership workshops on complex risk topics, driving consensus on risk tolerance and treatment strategies
  • Coordinate cross-functional risk initiatives across Security, IT, Legal, and Business teams
  • Contribute to the evolution of the Enterprise Risk Management roadmap by developing scalable, reusable solutions that enhance program maturity and efficiency
  • Educate stakeholders on emerging cybersecurity risks, regulatory requirements, and risk-by-design principles

Benefits

  • Medical, Dental, Vision plans
  • 401K with matching
  • PTO for salaried employees
  • Work/life balance – we know there’s more to life than work! We encourage our team to pursue other passions, get outside, and spend time with family. We work with clients and consultants to set expectations for a manageable workload.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service