Description
POSITION SUMMARY
The Cyber Risk Advisory (CRA) Consultant will work as part of a team assessing the security, privacy and risk of our clients to best provide advice on cybersecurity programs, industry requirements and standards, and support remediation activities. This role will have a strong understanding of core
cybersecurity principles and industry frameworks (e.g., NIST CSF, CIS Controls). The Consultant will participate in interviews and workshops with client stakeholders, develop reports and remediation roadmaps. They will work closely with Project Managers, Directors and other Delivery team members to effectively manage project timelines and deliverables.
Requirements
WHAT YOU WILL BRING
- At least 3 (3+) years working experience in cyber security, GRC, or privacy
- Consulting experience or security experience in an industry segment (finance, healthcare, energy, technology, etc.)
- Knowledge and awareness of the latest information risk, security, privacy, and AI innovations, trends, challenges and solutions
- Exposure to industry acclaimed information governance, risk and security standards/frameworks and professional practices (NIST, ISO, CIS, etc.)
- Knowledge of information security related solutions, tools and utilities
- Bachelor’s degree in Business Administration, Computer Science, Information Systems, Engineering or related field, or equivalent combination of education and experience
- Strong analytical and problem-solving abilities
- Strong oral, written, and presentation skills
- Ability to work independently and time-manage
BONUS POINTS
- CIPM, CIPP (or other privacy-related certification)
- CISM, CCSK, CIPP, CISA, CGEIT, or CRISC certification(s)
- Cyber Incident Response Experience
- AWS, Azure, Google Cloud Platform certification(s) and experience
Job responsibilities
WHAT YOU WILL DO
- Support and guide information risk and security discussions with technical and non-technical client stakeholders
- Perform information risk, security and related compliance assessments, including testing of related controls
- Develop tactical reports with detailed cybersecurity risk and maturity findings, observations, and remediation recommendations
- Develop executive level briefings highlighting industry threats, organizational risks and recommendations
- Develop and operationalize enterprise information security programs and related components
- Assess cyber-related policy, procedures, legislation, and implementation directives
- Assess and remediate compliance with industry regulations and frameworks across multiple industries that are relevant to cybersecurity and privacy (e.g. NIST CSF, NIST 800-53, CIS Controls, NY DFS, CCPA, GDPR)
- Continuous professional development in maintaining industry specific certifications to maintain a strong depth of knowledge in the practice area.
What we offer
Exciting Projects: Come take your place at the forefront of digital transformation! With clients across all industries and sectors, we offer an opportunity to work on market-defining products using the latest technologies.
Collaborative Environment:Expand your skills by collaborating with a diverse team of highly talented people in an open, laidback environment — or even abroad in one of our global centers or client facilities!
Work-Life Balance:GlobalLogic prioritizes work-life balance, which is why we offer flexible work schedules.We offer you the best quality of work life so that you exceed the expectations of our clients, while achieving your professional and personal ambitions.
Professional Development:Our dedicated Learning & Development team regularly organizes English classes, professional certifications, and technical and soft skill trainings. We also offer the chance to travel internationally
Excellent Benefits:We provide our employees with competitive salaries, family medical insurance, extended paternity leave, annual performance bonuses, and referral bonuses.
About GlobalLogic
GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.
