Practice Director – GRC Strategic Program Advisory

The GRC Practice Director for Strategic Program Advisory will be responsible for directing a portfolio of services, projects, and resources for GuidePoint's customers in North America. The specific responsibilities and experience required are listed below.

Role and Responsibilities: 

Practice Leadership & Growth

• Lead and mentor a team of vCISO and Executive Advisory professionals responsible for delivering strategic cybersecurity leadership engagements.

• Develop and execute a growth strategy for expanding GuidePoint’s strategic program advisory portfolio.

• Manage the Practice’s P&L and achieve target KPIs for the Strategic Program Advisory practice.

• Engage with oversight of strategic clients.

• Ensure alignment of the Strategic Program Advisory Practice with GuidePoint’s broader mission and service ecosystem.

• Engage with GuidePoint’s regional leadership to drive a culture of collaboration, integrity, and shared success across geographically distributed teams.

• Lead strategic services sales efforts through conference speaking, blog/whitepaper authoring, and podcast speaking/producing.

• Lead the sales process through generation of thought leadership content, proposal development, and developing relationships.

• Create new sales, marketing, and delivery collaterals and improve existing content.

• Develop GPS methodologies and deliverables to manage the GRC strategic services.

• Recruit, manage, and develop consulting team to deliver services and internal practice objectives.

• Manage and expand key client executive relationships.

• Provide leadership and technical oversight and best practices across all GRC strategic services customer engagements.

• Shape and approve key engagement decisions such as project scope, work breakdown, estimates, and delivery schedule.

• Engage with client executive teams and boards as part of service delivery.

• Execute on security transformation programs in leadership role, typically with multiple peer GPS practice teams.

• Establish strong relationships and trust with customers to understand customer’s business environments and requirements.

• Work with other GuidePoint Security practices as part of a cohesive cross-functional team.

Client Engagement & Delivery Excellence

• Partner with executive clients (CISOs, CIOs, General Counsels, Boards — as well as GPS fractional CISO’s) to assess, develop, and operationalize cybersecurity strategies, governance programs, and ISMS frameworks.

• Oversee the design and implementation of cybersecurity program transformation roadmaps, risk management frameworks, and program maturity models aligned to recognized standards (e.g., NIST CSF, ISO 27001, CMMC, CIS).

• Ensure advisory engagements deliver measurable business outcomes and operational improvements.

• Lead and manage pre-sales and business development activities, including executive workshops, SOW scoping, and thought leadership sessions with client stakeholders.

Team Development & Operational Enablement

• Serve as a coach and advocate for continuous professional development and advisory excellence.

• Proactively work to mature the practice, including improving existing offerings, creating new offerings, and mentoring team members.

• Author comprehensive business and technical collateral to support the practice that is proficiently tailored to technical, managerial, and executive audiences.

• Build and sustain a high-performing team recognized for quality, insight, and influence.

• Foster engagement, accountability, and collaboration across regional and practice boundaries.

• Partner with transformation, enablement, operations, vCISOs, fractional CISOs, and marketing teams to strengthen practice visibility, performance, and alignment.

• Work with other GuidePoint Security practices (outside of GRC) as part of a cohesive cross-functional team.

Thought Leadership & Market Positioning

• Represent GuidePoint’s Leadership Advisory Practice at executive briefings, industry events, and cybersecurity summits.

• Contribute to the development of GuidePoint’s methodologies, frameworks, and leadership advisory tools.

• Publish and present thought leadership content on cybersecurity governance, and organizational resilience.

• Advance GuidePoint’s reputation as a trusted partner for executive-level cybersecurity leadership and strategy.

Experience and Education:

Required

• 15+ years of experience in cybersecurity leadership, governance, or executive advisory roles.

• Experience with engaging at Board and CXO levels.

• Demonstrated success leading senior advisory teams or cybersecurity transformation initiatives.

• Proven experience in designing and operationalizing ISMS or cybersecurity governance programs (ISO 27001, NIST CSF, CMMC, etc.).

• Strong executive presence and credibility with boards and senior business leaders.

• Exceptional interpersonal and communication skills; ability to motivate and unify diverse, high-performing professionals.

• Strategic thinker with the ability to translate vision into actionable plans and measurable outcomes.

Preferred

• Prior experience as a CISO, Deputy CISO, or senior cybersecurity executive advisor.

• Certifications such as Certifications such as CISSP, CISM, CCISO, etc.

• MBA, MS in Cybersecurity, or equivalent leadership education.

• Experience with program transformation, change management, or cyber risk quantification frameworks (FAIR, CRQ).