Principal, Cyber Assurance jobs in United States
cer-icon
Apply on Employer Site
company-logo

Control Risks · 3 months ago

Principal, Cyber Assurance

positionNew York, NY
timeFull-time
remoteHybrid
seniorityLead/Staff
money$200K/yr - $215K/yr
date12+ years exp

Control Risks is a leading firm specializing in risk management and compliance. They are seeking a Principal in Cyber Assurance to drive the growth of Digital Risks in the U.S., focusing on cyber assurance, third-party risk management, and regulatory compliance audits while collaborating with various teams to enhance client cybersecurity programs.

ConsultingInsurTechRisk ManagementSecurity
badNo H1Bnote

Responsibilities

Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks
Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements
Oversee large-scale third-party risk and compliance audits, ensuring alignment with industry-specific frameworks, regulatory standards, and contractual obligations
Oversee regulatory compliance audits to ensure clients meet required standards and regulations
Advise clients on audit preparation and guide them through maintaining compliance while improving cybersecurity measures
Ensure clients' compliance programs address both current and emerging regulatory requirements
Partner with the penetration testing team to incorporate findings into broader cyber assurance reviews
Lead remediation efforts for high-risk vulnerabilities, aligning them with the client's overall compliance and cybersecurity objectives
Build and sustain relationships with key stakeholders, especially C-suite executives, positioning Digital Risks as a leader in cyber assurance and regulatory compliance
Identify and capitalize on new business opportunities in cyber assurance, third-party risk assessments, and compliance audits
Provide thought leadership on cyber assurance trends, regulatory updates, and best practices to enhance client relationships and grow the practice
Advise clients on continuously improving their cybersecurity and compliance frameworks based on audit findings and risk assessments
Recruit, develop, and lead a high-performing team specializing in cyber assurance, third-party risk management, and regulatory compliance
Foster a culture of continuous learning, ensuring the team stays ahead of emerging trends in cybersecurity and compliance
Contribute to the creation of innovative services and solutions to meet clients' evolving needs in cyber assurance and compliance auditing

Qualification

Cyber AssuranceThird-Party Risk ManagementRegulatory Compliance AuditsPenetration TestingNIST ComplianceISO 27001CISSP CertificationCISM CertificationCISA CertificationAnalytical SkillsCommercial AcumenCommunication SkillsPresentation Skills

Required

Candidates must be legally authorized to work in the US on a permanent basis without sponsorship
Candidates must possess unrestricted US work authorization
12+ years of experience in cybersecurity, specializing in cyber assurance, third-party risk management, and regulatory compliance audits
Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001)
Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles
In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for both commercial and government sectors
Experience integrating penetration testing and vulnerability assessments into broader cyber assurance strategies
Bachelor's or master's degree in information security, Computer Science, Engineering, or a related field
Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing
Strong commercial acumen, with proven ability to generate new business in cyber assurance and regulatory compliance services
Exceptional communication, presentation, and analytical skills with the ability to influence senior stakeholders and deliver impactful insights that improve cybersecurity resilience and regulatory compliance

Benefits

Medical Benefits
Prescription Benefits
FSA
Dental Benefits
Vision Benefits
Life and AD&D
Voluntary Life and AD&D
Disability Benefits
Voluntary Benefits
401 (K) Retirement
Nationwide Pet Insurance
Employee Assistance Program

Company

Control Risks

twittertwittertwitter
Glassdoor3.6
company-logo
Control Risks is a risk consultancy that provides security risk management, organizational resilience, and operational protective security.
dateFounded in 1975
location
London, England, GBR
people-size1001-5000 employees
web-link
https://www.controlrisks.com

Funding

Current Stage
Late Stage
Total Funding
unknown
Key Investors
NVM Private Equity
2011-03-17Private Equity
1995-01-01Private Equity

Leadership Team

leader-logo
Bill Udell
Senior Partner, Crisis and Security Consulting for the Americas
linkedin
leader-logo
Brad Kolacinski
Partner
linkedin

Recent News

PRWeb
Seerist Accelerates Growth in Q3 2025 with Record Setting Expansion Across Commercial and Government Sectors
2025-10-23
AP News
Desperate search for fuel in Mali’s capital as al-Qaida-linked group enforces blockade
2025-10-09
Zawya.com
Control Risks’ 10th Africa Risk-Reward Index
2025-09-17
Company data provided by crunchbase