Senior GRC Consultant, vCISO Advisory Services Team (REMOTE)
Echelon Risk + Cyber
- Dallas, TX
- Permanent
- Full-time
- Assist in the planning, scoping, execution and reporting of vCISO Advisory Services and Managed Cybersecurity engagements
- Collaborating with the Virtual CISO, IT management and client leadership to execute the Cybersecurity and Compliance program
- Develop and maintain Cybersecurity policies and procedures
- Review and assess security and technology controls against cybersecurity best practice and compliance frameworks
- Conduct client discoveries and onboarding of services including performing client interviews, developing and executing discovery and assessment plans, generating and coordinating evidence requests and reviewing documentation and supporting evidence
- Document results, create client reports and communicate results to client management and other stakeholders
- Work collaboratively with our clients and other team members and to identify information security risks and challenges and provide actionable recommendation and solutions
- Demonstrate consistency, versatility and adaptability while managing simultaneous client engagements and priorities and delivering quality results in a timely fashion
- Work with the internal team to develop and plan engagement strategies, define objectives, identify and provide recommendations to address client risks
- Create client-facing presentations, reports, and analytics
- Plan, coordinate and manage Cybersecurity and Compliance programs with strong project management and communication techniques (e.g., build security roadmaps, prioritize and track initiatives)
- Assist leadership in the creation of proposals, budgets, work plans and other business development efforts
- Establish exceptional internal and client relationships using strong communication skills
- Produce thought leadership for the organization's website blog on a regular basis
- Actively engage in the cybersecurity community by attending or speaking at local or national conferences
- 4+ years of related experience in the cybersecurity industry
- Focus on Governance, Risk and Compliance planning, development and management
- Knowledge of GRC Platforms/Tools to assist with Assessments and Compliance Management
- Risk management experience, including performing assessments and audits, designing information security controls and processes, managing enterprise control frameworks, and evaluating and prioritizing risk
- Experience with a variety of information security frameworks and best practices (e.g., CIS, NIST, PCI, CMMC, ISO, GLBA, FFIEC, SOX, SOC, HIPAA, HITRUST, etc.)
- Degree in Information Systems, Computer Science, Information Security, or related discipline preferred
- Project Management experience preferred
- Certifications recommended: CISSP, CISA, CISM, or similar certification
- Ability to manage and prioritize multiple projects simultaneously and adapt in a demanding and changing environment
- Although this is not a technical oriented role, knowledge of Cloud systems, applications, security services/tools (e.g., EDR, MDR, SIEM, Vulnerability Scanning, Email Security, Backup/DR, MDM), Firewalls, Basic Networking, Data Security, IAM/SSO, etc., will be beneficial in an advisory capacity
- Intellectual curiosity: seeking opportunities to develop and demonstrating a willingness to learn
- Strong attention to detail and superior analytical, technical, and problem-solving skills
- Excellent verbal and written communication skills with experience crafting professional messages and adjusting communication style based on audience
- Preferred experience working with financial services, healthcare, or regulated industries
- Authorized to work in the United States
- Access to medical, dental, and vision insurance through Cigna with the majority of the employee cost covered by the employer
- Employer funding to HSA accounts and FSA access
- Access to a 401(k) through Vanguard with a guaranteed employer contribution
- Flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to
- 11 holidays with flexibility based on what is important for you and those you love
- Family-friendly benefits, including 16 weeks off for Maternity leave, 8 weeks off for non-birthing parent leave, employer-paid short-term and long-term disability, employer-paid life insurance, and access to additional life insurance, hospital coverage, accidental coverage, discounted mental health support, and more
- Support on individual development through certifications, continued learning, conferences, and more
- Path to equity in Echelon