Senior Strategic Cybersecurity Consultant

About The Position

Requirements

• Bachelor’s Degree equivalent required.
• (5+) years of previous technical experience in secure engineering/system architecture.
• (5+) years of previous experience with addressing governance, risk, and compliance objectives.
• (10+) years of technology and/or information security management experience.
• Strong understanding of NIST CSF, ISO 27001, CIS, NIST 800-53, MITRE, PCI, HIPPA, SOC and other security & compliance frameworks
• Excellent written and verbal communication, listening, and client management skills.
• Demonstrated technical, regulatory, and operations management knowledge as well as consultative skills.
• Ability to articulate complex technical, regulatory, and operations management information to clients based on relevant assessment details and interpretation of findings.
• Proven presentation skills.
• Self motivated, strong analytical skills and detail oriented.
• Goal oriented, with a proven history of meeting or exceeding client satisfaction expectations.
• Occasional travel required.
• Capability to provide support across various time zones.

Nice To Haves

• Relevant certifications (e.g., CISSP, CISM) are a plus.

Responsibilities

• Provide expert consultation to clients and prospective clients to thoroughly understand and evaluate their information security program requirements. Deliver tailored recommendations that align with business objectives, regulatory standards, and contractual obligations.
• Formulate comprehensive security and cyber resilience strategies/roadmaps that are closely aligned with the client’s business objectives.
• Support the development of Incident Response Plans, Vendor Risk Management strategies, and Information Security Policies.
• Conduct Incident Response tabletop exercises by creating and moderating various hypothetical scenarios.
• Design, evaluate, and execute assessments and services in accordance with industry frameworks and compliance requirements.
• Conduct thorough security architecture reviews to identify gaps and risks and provide strategic recommendations to enhance the client’s security posture.
• Develop security metrics and key performance indicators
• Prepare and present comprehensive security and risk assessment reports to the board and executive team.
• Translate complex technical findings into clear, actionable insights for non-technical stakeholders.
• Track ongoing program maturation progress with assigned client(s)
• Develop strategies to overcome or eliminate obstacles that may hinder effective security program delivery
• Stay updated on the latest security trends, threats, and best practices to inform presentations.
• Create and maintain client relationships, consistently searching for new, potential clients who may benefit from services and products provided
• Other duties shall be assigned as required

Benefits

• Competitive compensation
• Full benefits: medical, dental, vision, life insurance, and paid parental leave
• Matching RRSP program
• Annual Lifestyle Spending Account
• Professional development subsidies and certification support
• Competitive employee referral bonus