Apply on Employer Site

GuidePoint Security · 1 day ago

Senior Security Consultant, Risk- Remote (Anywhere in the U.S.)

United States

Full-time

Remote

Senior Level, Lead/Staff

8+ years exp

GuidePoint Security is a trusted cybersecurity firm that provides expertise and solutions to help organizations minimize risk. As a Senior Security Consultant, you will deliver high-quality consulting services focused on risk management and assessments, contributing to the growth and success of the practice.

Cyber SecurityInformation TechnologySecurity

Comp. & Benefits

No H1B

Hiring Manager

Caron D.

Responsibilities

Deliver successful consulting engagements across multiple Risk offerings while maintaining a high degree of customer satisfaction

Perform qualitative and quantitative risk assessments using industry-recognized frameworks, such as FAIR, ISO 31000, 30101, 27005, NIST 800-30, etc. as a lead consultant

Provide advisory services to GuidePoint customers to help mature their cyber risk management and information security programs

Establish strong relationships and trust with customers to understand customers’ business environments and requirements

Work with other GuidePoint Security practices as part of a cohesive cross-functional team

Remain current on industry developments and incorporate into service delivery

Strong ability to work independently and multi-task on multiple projects simultaneously

Ability to contribute to practice and offering development

Provide mentorship to other Risk consultants and team members

Personal drive and passion for growing themselves and the Risk Practice

Clear communication skills

Qualification

Cybersecurity GRC experienceRisk assessments methodologiesSecurity frameworks knowledgeGRC tools experienceRisk management programsProject management skillsCommunication skillsCoachableMentorship abilitiesSelf-driven

Required

Minimum of 8 years of combined cybersecurity GRC experience across private/public sector and consulting

Minimum of 3 years' experience consulting and delivering qualitative and quantitative risk assessments using industry-recognized methodologies, such as FAIR, ISO/IEC 31010, NIST 800-30, etc

The ability to lead interviews with executive and technical stakeholders, unique to each client

Strong understanding and working knowledge of security frameworks and standards including NIST CSF, NIST CSF/RMF, ISO 31000, and others

Experience with GRC and Cyber Risk Management tools (e.g., SafeOne, OneTrust, LogicGate, ServiceNow GRC/IRM, AuditBoard)

Demonstrated experience in assessing, developing, and implementing GRC and cybersecurity risk management programs that integrate with Enterprise Risk Management within an organization

Strong understanding of all the functions within a security program, the ability to assess risk both qualitatively and quantitatively, resulting in strategic recommendations and direction to senior leadership

Strong communication skills, to include articulating thoughts and distilling complex problems into digestible information to be consumed by anyone from technical resources to the highest level of management; proven experience communicating clearly to technical levels up through C-Level and Board level

Demonstrated experience in delivering written risk assessments report to include maintaining a detailed workbook, high level process explanations, in depth risk scenario breakdowns and detailed recommendations and conclusions

Self-driven; able to manage schedules, meet deadlines, coordinate with others, perform tasks, and work independently with minimal supervision

Excellent project management skills, with the ability to work with multiple customers, deadlines, and priorities

Organized and effective with time and meeting management

GRC or management focused industry certifications such as CISSP, CISA, CISM, CRISC, FAIR Fundamentals, etc

Preferred

Experience with driving cybersecurity assessments for client organizations

Demonstrated experience of developing information security policies, standards, plans, procedures, and other documentation to support customer adopted frameworks and industry standards

Coachable, able to receive direction, feedback, and to adjust quickly

Consulting experience preferred

Benefits

Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)

Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans

12 corporate holidays and a Flexible Time Off (FTO) program

Healthy mobile phone and home internet allowance

Eligibility for retirement plan after 2 months at open enrollment

Pet Benefit Option