About the position
You will join Sia Partners' Cybersecurity, Data Protection and Resilience Global Business Line. In accordance with your skills and expertise, you will work - in Consulting, Implementation and Audit - on one or more of our following offers: Strategy, Risk, Compliance, Operations, Data Protection, Offensive Security, Resilience and Training.
Responsibilities
• Lead and/or support cybersecurity engagements across diverse industries as part of an on-site or remote project teams
• Contribute to the development of high-quality and timely deliverables that clearly communicate project findings and recommendations
• Facilitate effective meetings and communicate project outcomes and technical findings clearly to the stakeholders across various levels of the client organization
• Execute industry-standard and regulatory assessments e.g., NIST, ISO 2700x, U.S. Privacy Laws, DORA, GDPR, NYDFS Part 500, SWIFT CSCF
• Collaborate closely with both internal and client stakeholders to support effective engagement execution
• Deliver regular status updates to project stakeholders including Senior Management
• Assist in business development efforts, including client proposal creation and thought leadership
• Engage in internal initiatives, and actively contribute to the growth of our Cybersecurity practice
Requirements
• Bachelor's degree required in Business Management, Finance, Computer Science, Engineering, IT, Mathematics, etc.
• Two or more years of recent client-facing management consulting experience with an emphasis on cyber-related projects
• Strong knowledge of data privacy and protection laws and regulations e.g., EU-GDPR, CCPA/CPRA, HIPAA, GLBA, and CDPA
• Holds or is willing to obtain within the first year of joining one of the following certifications: CISSP, CISM, CISA, CRISC, CEH, etc.
Nice-to-haves
• Cybersecurity and IT Risk requirements, metrics, reporting procedures and control frameworks (NIST, ISO, CMMC, SANS, etc.)
• Operational Resilience frameworks including policies and procedures for BCP/DR, Tabletop exercises, incident response and crisis management
• Third Party Risk Management (TPRM)
• Penetration testing
• Vulnerability and patch management
• Cloud security and/or network expertise (AWS, Azure, GCP)
• Knowledge of cryptography and/or blockchain
Benefits
• Salary + Annual Discretionary Bonus
• Healthcare coverage that includes medical, dental, vision and life insurance policies
• Generous time off
• Parental leave paid at 100% of base pay for all new parents regardless of gender
• Building Healthy Families Program
• 9 Company Holidays + 1 Floating Holiday
• 401(k) Plan - 4% matching on day 1
• College save-up plan & college loan repayment plan
• Monthly cell phone stipend
• Commuter Benefits
• Gym Reimbursement through firm medical plan