Principal Security Consultant - Compliance
Position Duties
Provide direction, guidance, and/or mentorship within area(s) of expertise.
Contribute to practice and offering development.
Provide presales support for Compliance opportunities.
Deliver world-class cyber security assessment and advisory services across multiple Compliance offerings while ensuring customer satisfaction (up to 15% travel to U.S. locations is required). Lead consultant teams on large engagements when applicable.
Remain current on technical knowledge and industry developments.
Achieve and maintain relevant cyber security and audit certifications.
Publish content and/or perform speaking engagements to demonstrate thought leadership.
Demonstrate GuidePoint’s Core Values at all times:
Take Charge and Complete Our Mission
Challenge Ourselves and Have Fun Doing It
Wow Them
No Jerks
Minimum Position Requirements
Bachelor’s degree in Information Technology, Information Security, or related field.
Demonstrable experience and expertise in modern technology architectures.
At least three (3) years of operational experience implementing controls in support of a cyber security standard/framework, such as (but not limited to) the CIS Controls, CMMC/DFARS/NIST SP 800-171, DORA, FedRAMP, HIPAA, HITRUST, ISO 27001, NIS-2 (any country), NIST SP 800-53 (or any derivative), the PCI DSS, SOC 2, and/or StateRAMP.
At least five (5) years of consulting experience performing cyber security consulting services for clients based on at least one of the standards above.
At least two (2) industry cyber security certifications, such as (but not limited to) CISSP, CISA, CISM, GIAC certifications, ISO 27001 certifications, or PCI QSA.
Strong written communication skills for preparing customer deliverables and communicating in written form with customers and colleagues.
Strong verbal communications skills, including the ability to clearly articulate, educate on, and discuss general and specific cyber security and compliance topics with customers and colleagues of all technical and knowledge levels and positions, from line staff to top-level executives and directors.
Experience conducting pre-sales, scoping, and/or deliverable QA efforts.
Ability to work with, and manage the relationships and expectations, of customers of varying industries, corporate cultures, styles, and expectations.
Ability to multi-task/time-slice effectively and meet deadlines in a fast-paced environment.
Drive and passion to grow and mature both the Compliance practice and individually.
Desired Qualifications
Experience developing and implementing cyber security policies and processes.
Understanding and working knowledge of risk assessment frameworks and methodologies.
Experience with GRC tools focused on compliance management.
Management experience leading consultant teams/practices.
Conference speaking experience.
About the job
Apply for this position
Principal Security Consultant - Compliance
Position Duties
Provide direction, guidance, and/or mentorship within area(s) of expertise.
Contribute to practice and offering development.
Provide presales support for Compliance opportunities.
Deliver world-class cyber security assessment and advisory services across multiple Compliance offerings while ensuring customer satisfaction (up to 15% travel to U.S. locations is required). Lead consultant teams on large engagements when applicable.
Remain current on technical knowledge and industry developments.
Achieve and maintain relevant cyber security and audit certifications.
Publish content and/or perform speaking engagements to demonstrate thought leadership.
Demonstrate GuidePoint’s Core Values at all times:
Take Charge and Complete Our Mission
Challenge Ourselves and Have Fun Doing It
Wow Them
No Jerks
Minimum Position Requirements
Bachelor’s degree in Information Technology, Information Security, or related field.
Demonstrable experience and expertise in modern technology architectures.
At least three (3) years of operational experience implementing controls in support of a cyber security standard/framework, such as (but not limited to) the CIS Controls, CMMC/DFARS/NIST SP 800-171, DORA, FedRAMP, HIPAA, HITRUST, ISO 27001, NIS-2 (any country), NIST SP 800-53 (or any derivative), the PCI DSS, SOC 2, and/or StateRAMP.
At least five (5) years of consulting experience performing cyber security consulting services for clients based on at least one of the standards above.
At least two (2) industry cyber security certifications, such as (but not limited to) CISSP, CISA, CISM, GIAC certifications, ISO 27001 certifications, or PCI QSA.
Strong written communication skills for preparing customer deliverables and communicating in written form with customers and colleagues.
Strong verbal communications skills, including the ability to clearly articulate, educate on, and discuss general and specific cyber security and compliance topics with customers and colleagues of all technical and knowledge levels and positions, from line staff to top-level executives and directors.
Experience conducting pre-sales, scoping, and/or deliverable QA efforts.
Ability to work with, and manage the relationships and expectations, of customers of varying industries, corporate cultures, styles, and expectations.
Ability to multi-task/time-slice effectively and meet deadlines in a fast-paced environment.
Drive and passion to grow and mature both the Compliance practice and individually.
Desired Qualifications
Experience developing and implementing cyber security policies and processes.
Understanding and working knowledge of risk assessment frameworks and methodologies.
Experience with GRC tools focused on compliance management.
Management experience leading consultant teams/practices.
Conference speaking experience.