Job Summary:

The Senior Cybersecurity and Compliance Consultant supports and advises BDO's clients (customers) to satisfy their compliance, cyber security, IT controls and multiple governance frameworks applicable to their organization. This role evaluates and assesses business and technology operations to help companies with compliance and security to applicable frameworks, along with providing possible solutions for the mitigation of risks and/or continuous improvement with security. This position may also assist clients implement compliance, security, or governance programs to in an effort to help them focus on other business initiatives.

Job Duties:

• Participates in engagements for PCI, data security, compliance and governance frameworks, security vendor assessments and IT controls assessments
• Conducts and assesses compliance and governance requirements based on standard programs to assist the organization in meeting business needs
• Gains an understanding of the client's business environment and risk management frameworks and approaches
• Recognizes technical issues or possible areas of concern and reports those internally and to the client once validated
• Develops assessment and "gap" reports, including observations and possible solutions
• Prepares presentations for client meetings
• Participates in remediation planning and outlines client requirements applicable to frameworks such as PCI, ISO, NIST, and CIS, for example
• Attends client meetings and documents technical client interviews, internal meetings and memorializes reports and memorandum contents
• Develops and maintains relationships with client personnel
• Budgets time and assists with multiple project requests simultaneously, as well as monitors project tasks and risks
• Travels if necessary
• Other duties as required

Supervisory Responsibilities:

• N/A

Qualifications, Knowledge, Skills and Abilities:

Education:

• Bachelor's degree with a focus in Computer Science, Information Security, Accounting, or Finance, required

Experience:

• Two (2) or more years of experience in IT controls, Cyber (NIST or CIS), HIPAA, PCI, or security compliance, required
• Prior experience working within a national consulting organization or professional services, preferred

License(s)/Certification(s):

• Any security certifications such as CISA, CISM, CISSP, or other certifications, preferred
• AWS Cloud Practitioner or Microsoft 365 Certified, preferred

Software:

• Experience with AWS, Google Virtual Private Cloud, Microsoft cloud services, OneDrive, SharePoint, and Visio, preferred

Language(s):

• Multilingual capabilities (read, speak and/or write), preferred

Other Knowledge, Skills & Abilities:

• Ability to maintain a high level of confidentiality and professionalism
• Ability to communicate with professionals at all organizational levels
• Capacity to build and maintain strong relationships with BDO and client personnel
• Solid organizational and excellent verbal and written communication skills
• Ability to successfully multi-task while working independently or within a group environment
• Applied knowledge of technologies for data mapping, risk assessments, third party risk management, compliance tracking, security controls management

Keyword: Cyber, Security, Compliance, I PCI, NIST, ISO, Compliance Manager, Google VPC, AWS Cloud, CISA, CISM, CISSP, AWS, Security Administrator

Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate's qualifications, experience, skills, and geography.

California Range: $80,000 - $90,000
Colorado Range: $80,000 - $90,000
NYC/ Long Island/Westchester Range: $80,000 - $90,000
Washington Range: $80,000 - $90,000