• Participates and takes an active role in project tasks applicable to HIPAA, NIST CSF, PCI, data security, compliance and governance frameworks, security vendor assessments and IT controls assessments
• Conducts and assesses compliance and governance requirements based on standard programs to assist the organization in meeting business needs
• Identifies and evaluates business and technology risks to assist with possible options to mitigate risks
• Works to understand the clients' business environment and risk management frameworks and approaches
• Recognizes technical issues or possible areas of concern and reports those internally and to the client once validated
• Documents interviews and meetings and captures action items, next steps and risks
• Develops assessment and 'gap' reports, including observations and possible solutions
• Prepares presentations for client meetings
• Participates in remediation planning and outlines client requirements applicable to frameworks such as PCI, ISO, NIST, HIPAA, and CIS, for example
• Develops and maintains relationships with client personnel
• Budgets time and assists with multiple project requests simultaneously, as well as monitors project tasks and risks
• Travels, as necessary

Required Qualifications:

• N/A

Preferred Qualifications:

• Prior experience working within a national consulting organization or professional services, preferred
• One (1) or more years of experience working on large, complex projects, preferred
• Any security certifications such as CISA, CISM, CISSP, or other certifications, preferred
• AWS Cloud Practitioner or Microsoft 365 Certified, preferred
• Experience with AWS, Google Virtual Private Cloud, preferred
• Multilingual capabilities (read, speak and/or write), preferred
• Ability to interact effectively with people at all organizational levels
• Capacity to build and maintain strong relationships with internal and client personnel
• Solid organizational, verbal and written communication skills
• Ability to meet project deadlines with a focus on details
• Ability to successfully multi-task while working independently or within a group environment
• Ability to work in a deadline-driven environment, and handle multiple projects simultaneously
• Applied knowledge of technologies for data mapping, risk assessments, third party risk management, compliance tracking, security controls management

Supervisory Responsibilities:

• N/A

Keyword: Cyber, Security, Compliance, PCI, NIST, ISO, HIPAA, Compliance Senior, Google VPC, AWS Cloud, CISA, CISM, CISSP, AWS, Security Administrator