Job Summary:
The Senior Cyber Security and Compliance Consultant supports and advises BDO’s clients to satisfy their compliance, cyber security, IT controls and multiple governance frameworks applicable to their organization. This role evaluates and assesses business and technology operations to help companies with compliance and security to applicable frameworks, along with providing possible solutions for the mitigation of risks and/or continuous improvement with security. This position may also assist clients implement compliance, security or governance programs to in an effort to help them focus on other business initiatives.
Job Duties:
Participates in engagements for PCI, data security, compliance and governance frameworks, security vendor assessments and IT controls assessments, Conducts and assesses compliance and governance requirements based on standard programs to assist the organization in meeting business needs Develops assessment and “gap” reports, including observations and possible solutions Gains an understanding of the client’s business environment and risk management frameworks and approaches Participates in remediation planning and outlining client requirements applicable to frameworks such as PCI, ISO, NIST, and CIS, for example Attends client meetings and documents technical client interviews, internal meetings and memorializes reports and memorandum contents Budgets time and assists with multiple project requests simultaneously, as well as monitors project tasks and risks Travels up to 50% of the time or as necessary Other duties as requiredSupervisory Responsibilities:
N/A
Qualifications, Knowledge, Skills and Abilities:
Education:
High school degree or GED, required Bachelor’s degree with a focus in Computer Science, Information Security, Accounting, or Finance, preferredExperience:
Two (2) or more years of experience in IT controls, Cyber, PCI, or security compliance, required Two (2) or more years of prior experience in management consulting, technology advisory, or technology project management, preferred Two (2) or more years of experience supporting Security projects such as NIST, HIPAA, CIS, ISO, or PCI-DSS projects, preferred Prior experience working within a national consulting organization or professional services, preferredLicense(s)/Certification(s):
Any security certifications such as CISA, CISM, CISSP, or other certifications, preferred AWS Cloud Practitioner or Microsoft 365 Certified: Security Administrator Associate, preferredSoftware:
Proficient in the use of Windows and Microsoft Office Suite, specifically Word, Excel, and PowerPoint, required Experience with AWS, Google Virtual Private Cloud, Microsoft cloud services, OneDrive, SharePoint and Visio, a plusLanguage(s):
Multilingual capabilities (read, speak and/or write), a plusOther Knowledge, Skills & Abilities:
Ability to maintain a high level of confidentiality and professionalism Ability to communicate with professionals at all organizational levels Capacity to build and maintain strong relationships with BDO and client personnel Solid organizational and excellent verbal and written communication skills Ability to successfully multi-task while working independently or within a group environment Applied knowledge of technologies for data mapping, risk assessments, third party risk management, compliance tracking, security controls management, a plusKeyword:
Cyber, Security, Compliance, I PCI, NIST, ISO, Compliance Manager, Google VPC, AWS Cloud, CISA, CISM, CISSP, AWS, Security Administrator
Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate’s qualifications, experience, skills, and geography.
California Range: $80,000 - $90,000
Colorado Range: $80,000 - $90,000
Illinois Range: $80,000 - $90,000
Maryland Range: $80,000 - $90,000
Minnesota Range: $80,000 - $90,000
NYC/Long Island/Westchester Range: $80,000 - $90,000
Washington Range: $80,000 - $90,000
Washington DC Range: $80,000 - $90,000