Cyber Security Consultant

12-month W2 contract, with possible extension

Description

Job Summary:

This role is pivotal in the strategic management of key cyber security initiatives, focusing on identifying and implementing security risk management and compliance solutions tailored to meet the business needs of critical applications, infrastructure, and services. The position involves protecting the organization against data loss and vulnerabilities while ensuring compliance with regulatory requirements from agencies such as FERC, NERC, and the Department of Homeland Security. By collaborating with various business units, governmental agencies, and security communities, this role drives initiatives that enhance information protection and threat management through expert-level business and technical acumen.

Responsibilities:

- Perform Security Risk Assessments to identify vendor/third party risks and new initiative/project risks, recommending controls aligned with appropriate standards and frameworks.

- Engage with other departments to sustain, improve, and streamline processes focused on safety, security, quality, delivery, and cost.

- Partner with business and technology teams to conduct risk analysis, document findings, and facilitate risk treatment for identified issues.

- Create, review, and maintain Standards & Standard Operating Procedures along with other relevant documentation.

- Assess and communicate information regarding business risks across the organization while building relationships with business partners to understand their specific risk landscapes.

- Utilize professional knowledge to influence and guide business areas in managing risks effectively.

Skills:

- Strong understanding of information security policies, standards, industry best practices, and frameworks.

- Excellent communication skills for documenting and conveying risks and controls to both technical and non-technical stakeholders.

- Ability to influence peers and management while fostering cross-functional teamwork.

- Solid analytical skills for conducting risk assessments and audits.

- Self-starter with a proactive approach to setting personal goals and tracking performance.

Qualifications:

- Bachelor's degree or higher in computer science, technology, business or equivalent combination of education and experience.

- Minimum of 5 years of experience in security (physical or cyber).

- At least 1 year of experience in Information Technology may substitute for up to 1 year of experience in a security function.

- Two years of experience with risk assessments, audit or control testing.

This is an exciting opportunity for individuals looking to make a significant impact in the field of cyber security within a dynamic organization. You will have the chance to work on complex projects that are critical to the company's success while collaborating with diverse teams across various sectors. If you are passionate about enhancing security measures and driving compliance initiatives in a fast-paced environment, we encourage you to apply!