Apply on Employer Site

CrossCountry Consulting · 5 months ago

Director - Risk Advisory (Cybersecurity & Privacy) (NY)

New York, NY

Full-time

Hybrid

Director/Executive

$178K/yr - $356K/yr

12+ years exp

CrossCountry Consulting is an advisory firm dedicated to creating a positive experience for both clients and employees. They are seeking a Director in their Risk Advisory practice to deliver tailored solutions in cybersecurity and privacy, while also leading teams and driving business development efforts. The role emphasizes hands-on project leadership, client relationship management, and strategic direction in risk management.

AccountingConsultingFinanceRisk Management

Growth Opportunities

Responsibilities

Provide hands-on project leadership and apply specialized knowledge across a diverse range of engagements spanning: Cybersecurity Assessment & Strategy: Cyber maturity assessments and roadmaps; risk assessments; operating models; executive advisory

Resilience: Incident Response, Business Continuity, and Disaster Recovery planning; tabletop exercise design and facilitation

Third Party Risk Management: TPRM program assessments; TPRM program designs (processes, tooling); vendor risk assessments

Data Security & Privacy: Privacy program assessments; data protection plans and roadmaps; privacy and data security tool/technology implementation

Regulatory Compliance: Regulatory mapping and horizon scanning; compliance readiness and remediation activities; exam and reporting support

Reporting & Metrics: KPI and KRI development; automation and operations; dashboards and reporting; risk appetite analysis

Serve as a cybersecurity subject matter expert for other CrossCountry teams as they deliver client engagements

Provide senior account and project-level leadership that ensures exceptional delivery quality, exceeds client expectations, nurtures client relationships, and creates expansion opportunities

Deliver high-quality consulting services by taking personal ownership of client engagements, ensuring that deliverables are practical and impactful

Share technical expertise by authoring thought leadership materials such as case studies, white papers, and learning materials, and represent CrossCountry at industry events

Oversee teams and individuals, monitor and guide performance in alignment with objectives, and promptly address issues, risks, and conflicts as they arise

Drive the strategic direction of the practice by actively monitoring industry trends, identifying emerging opportunities, and creating new services and solutions that meet market needs

Actively contribute to talent acquisition and retention efforts, participating in attracting, interviewing, and hiring top talent who embody our core values

Lead business development efforts and market a full range of services to prospective clients including using existing relationships to generate new opportunities

Qualification

Cybersecurity AssessmentRisk ManagementData ProtectionRegulatory ComplianceThird Party Risk ManagementBusiness Continuity PlanningIncident ResponseCybersecurity FrameworksClient Relationship ManagementBusiness DevelopmentThought LeadershipTalent AcquisitionTeam LeadershipMentorshipCommunication Skills

Required

12+ years of experience advising public companies, specializing in cybersecurity-driven IT strategy and governance, risk assessment, audit, privacy, and data protection

Expertise on systems pre- and post-implementation reviews, third-party risk management, systems development life cycle controls assessment, data analytics, disaster recovery planning, regulatory compliance, and IT project risk management, with a focus on building resilient, secure IT environments aligned with regulatory and operational standards

Experience with the major cybersecurity, technology, and operational risk frameworks and standards such as NIST CSF, CRI Cybersecurity Profile, CSA Cloud Controls, ISO 27000 series, COBIT, and Basel Operational Risk Principles

Professional services experience in a client-facing role at an accounting or consulting firm

Experience mentoring and developing junior team members and helping project teams resolve multi-faceted issues

Proven record of building and developing strong client relationships with C-level executives

Bachelor's degree from an accredited university

Professional certification (CISA, CISM, CISSP, CIPT, CIPP, CIPM)

Willingness to travel domestically up to 20%-30% (varies by client)

Availability to work at client site or in office 3 days a week, with 2 days remote (hybrid environment)