Control Risks
Senior Consultant - Cyber Assurance
Control Risks, Washington, District of Columbia, us, 20022
Senior Consultant
This role may be based in NYC or Washington DC. We are seeking a highly skilled and motivated Senior Consultant to join our growing cybersecurity assurance team. In this role, you will lead and deliver high-impact cyber risk and assurance engagements, helping clients navigate regulatory requirements, manage information security risks, and enhance their cybersecurity posture. You will play a key role in project delivery, client engagement, and mentoring junior staff, while also contributing to the development of new service offerings and best practices. Tasks and responsibilities The Senior Consultant will take responsibility for individual and client-facing outputs in the following areas: Delivering digital risk and cyber security engagements Lead and manage cyber assurance projects including IT audits, risk assessments, ISO 27001 readiness, SOC 2, NIST, PCI-DSS, and other compliance frameworks. Design, assess, and implement cybersecurity controls in line with regulatory requirements and industry best practices. Perform cybersecurity maturity assessments and develop tailored improvement roadmaps. Guide clients through internal and external audit processes, including preparation, testing, and remediation planning. Identify control gaps and recommend practical, risk-based solutions aligned with business objectives. Produce high-quality deliverables, such as risk reports, gap assessments, audit reports, and executive summaries. Build strong client relationships, acting as a trusted advisor on cybersecurity and risk issues. Support business development efforts, including proposals, presentations, and thought leadership. Mentor and supervise junior consultants, promoting a culture of knowledge sharing and continuous learning. Business development & practice growth Identify opportunities for additional services during engagements and contribute to proposal writing and client presentations. Assist in developing new service offerings, market insights, and go-to-market strategies for the cyber assurance practice. Participate in industry events, webinars, or networking opportunities to represent the firm's cyber capabilities.
This role may be based in NYC or Washington DC. We are seeking a highly skilled and motivated Senior Consultant to join our growing cybersecurity assurance team. In this role, you will lead and deliver high-impact cyber risk and assurance engagements, helping clients navigate regulatory requirements, manage information security risks, and enhance their cybersecurity posture. You will play a key role in project delivery, client engagement, and mentoring junior staff, while also contributing to the development of new service offerings and best practices. Tasks and responsibilities The Senior Consultant will take responsibility for individual and client-facing outputs in the following areas: Delivering digital risk and cyber security engagements Lead and manage cyber assurance projects including IT audits, risk assessments, ISO 27001 readiness, SOC 2, NIST, PCI-DSS, and other compliance frameworks. Design, assess, and implement cybersecurity controls in line with regulatory requirements and industry best practices. Perform cybersecurity maturity assessments and develop tailored improvement roadmaps. Guide clients through internal and external audit processes, including preparation, testing, and remediation planning. Identify control gaps and recommend practical, risk-based solutions aligned with business objectives. Produce high-quality deliverables, such as risk reports, gap assessments, audit reports, and executive summaries. Build strong client relationships, acting as a trusted advisor on cybersecurity and risk issues. Support business development efforts, including proposals, presentations, and thought leadership. Mentor and supervise junior consultants, promoting a culture of knowledge sharing and continuous learning. Business development & practice growth Identify opportunities for additional services during engagements and contribute to proposal writing and client presentations. Assist in developing new service offerings, market insights, and go-to-market strategies for the cyber assurance practice. Participate in industry events, webinars, or networking opportunities to represent the firm's cyber capabilities.