Senior Cybersecurity & Compliance Consultant

About The Position

Requirements

• Bachelor's degree with a focus in Computer Science, Information Security, Accounting, or Finance, required
• Two (2) or more years of experience in IT controls, Cyber (NIST or CIS), HIPAA, PCI, or security compliance, required
• Prior experience working within a national consulting organization or professional services, preferred
• Any security certifications such as CISA, CISM, CISSP, or other certifications, preferred
• AWS Cloud Practitioner or Microsoft 365 Certified, preferred
• Experience with AWS, Google Virtual Private Cloud, Microsoft cloud services, OneDrive, SharePoint, and Visio, preferred
• Multilingual capabilities (read, speak and/or write), preferred

Nice To Haves

• Ability to maintain a high level of confidentiality and professionalism
• Ability to communicate with professionals at all organizational levels
• Capacity to build and maintain strong relationships with BDO and client personnel
• Solid organizational and excellent verbal and written communication skills
• Ability to successfully multi-task while working independently or within a group environment
• Applied knowledge of technologies for data mapping, risk assessments, third party risk management, compliance tracking, security controls management

Responsibilities

• Participates in engagements for PCI, data security, compliance and governance frameworks, security vendor assessments and IT controls assessments
• Conducts and assesses compliance and governance requirements based on standard programs to assist the organization in meeting business needs
• Gains an understanding of the client's business environment and risk management frameworks and approaches
• Recognizes technical issues or possible areas of concern and reports those internally and to the client once validated
• Develops assessment and 'gap' reports, including observations and possible solutions
• Prepares presentations for client meetings
• Participates in remediation planning and outlines client requirements applicable to frameworks such as PCI, ISO, NIST, and CIS, for example
• Attends client meetings and documents technical client interviews, internal meetings and memorializes reports and memorandum contents
• Develops and maintains relationships with client personnel
• Budgets time and assists with multiple project requests simultaneously, as well as monitors project tasks and risks
• Travels if necessary
• Other duties as required

Benefits

• Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate's qualifications, experience, skills, and geography.