Description
POSITION SUMMARY
The Cyber Risk Advisory (CRA) Consultant will work as part of a team assessing the security, privacy and risk of our clients to best provide advice on cybersecurity programs, industry requirements and standards, and support remediation activities. This role will have a strong understanding of core
cybersecurity principles and industry frameworks (e.g., NIST CSF, CIS Controls). The Consultant will participate in interviews and workshops with client stakeholders, develop reports and remediation roadmaps. They will work closely with Project Managers, Directors and other Delivery team members to effectively manage project timelines and deliverables.
Requirements
WHAT YOU WILL BRING
- At least 3 (3+) years working experience in cyber security, GRC, or privacy
- Consulting experience or security experience in an industry segment (finance, healthcare, energy, technology, etc.)
- Knowledge and awareness of the latest information risk, security, privacy, and AI innovations, trends, challenges and solutions
- Exposure to industry acclaimed information governance, risk and security standards/frameworks and professional practices (NIST, ISO, CIS, etc.)
- Knowledge of information security related solutions, tools and utilities
- Bachelor’s degree in Business Administration, Computer Science, Information Systems, Engineering or related field, or equivalent combination of education and experience
- Strong analytical and problem-solving abilities
- Strong oral, written, and presentation skills
- Ability to work independently and time-manage
BONUS POINTS
- CIPM, CIPP (or other privacy-related certification)
- CISM, CCSK, CIPP, CISA, CGEIT, or CRISC certification(s)
- Cyber Incident Response Experience
- AWS, Azure, Google Cloud Platform certification(s) and experience
Job responsibilities
WHAT YOU WILL DO
- Support and guide information risk and security discussions with technical and non-technical client stakeholders
- Perform information risk, security and related compliance assessments, including testing of related controls
- Develop tactical reports with detailed cybersecurity risk and maturity findings, observations, and remediation recommendations
- Develop executive level briefings highlighting industry threats, organizational risks and recommendations
- Develop and operationalize enterprise information security programs and related components
- Assess cyber-related policy, procedures, legislation, and implementation directives
- Assess and remediate compliance with industry regulations and frameworks across multiple industries that are relevant to cybersecurity and privacy (e.g. NIST CSF, NIST 800-53, CIS Controls, NY DFS, CCPA, GDPR)
- Continuous professional development in maintaining industry specific certifications to maintain a strong depth of knowledge in the practice area.
What we offer
Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders.
Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally.
Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today.
Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way!
High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do.
About GlobalLogic
GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.
