Job Closed
This listing is no longer active.
Founded in 2011 and headquartered in Herndon, Virginia, GuidePoint Security furnishes commercial and federal organizations with customized information security
Senior Security Consultant, Risk
Location
United States
Posted
176 days ago
Salary
0
Seniority
Senior
Job Description
Senior Security Consultant, Risk
GuidePoint Security
• Deliver successful consulting engagements across multiple Risk offerings while maintaining a high degree of customer satisfaction. • Perform qualitative and quantitative risk assessments using industry-recognized frameworks, such as FAIR, ISO 31000, 30101, 27005, NIST 800-30, etc. as a lead consultant. • Provide advisory services to GuidePoint customers to help mature their cyber risk management and information security programs. • Establish strong relationships and trust with customers to understand customers’ business environments and requirements. • Work with other GuidePoint Security practices as part of a cohesive cross-functional team. • Remain current on industry developments and incorporate into service delivery. • Strong ability to work independently and multi-task on multiple projects simultaneously. • Ability to contribute to practice and offering development. • Provide mentorship to other Risk consultants and team members. • Personal drive and passion for growing themselves and the Risk Practice. • Clear communication skills.
Job Requirements
- Minimum of 8 years of combined cybersecurity GRC experience across private/public sector and consulting.
- Minimum of 3 years’ experience consulting and delivering qualitative and quantitative risk assessments using industry-recognized methodologies, such as FAIR, ISO/IEC 31010, NIST 800-30, etc.
- The ability to lead interviews with executive and technical stakeholders, unique to each client.
- Strong understanding and working knowledge of security frameworks and standards including NIST CSF, NIST CSF/RMF, ISO 31000, and others.
- Experience with GRC and Cyber Risk Management tools (e.g., SafeOne, OneTrust, LogicGate, ServiceNow GRC/IRM, AuditBoard).
- Demonstrated experience in assessing, developing, and implementing GRC and cybersecurity risk management programs that integrate with Enterprise Risk Management within an organization.
- Strong understanding of all the functions within a security program, the ability to assess risk both qualitatively and quantitatively, resulting in strategic recommendations and direction to senior leadership.
- Strong communication skills, to include articulating thoughts and distilling complex problems into digestible information to be consumed by anyone from technical resources to the highest level of management; proven experience communicating clearly to technical levels up through C-Level and Board level.
- Demonstrated experience in delivering written risk assessments report to include maintaining a detailed workbook, high level process explanations, in depth risk scenario breakdowns and detailed recommendations and conclusions.
- Self-driven; able to manage schedules, meet deadlines, coordinate with others, perform tasks, and work independently with minimal supervision.
- Excellent project management skills, with the ability to work with multiple customers, deadlines, and priorities.
- Organized and effective with time and meeting management.
- GRC or management focused industry certifications such as CISSP, CISA, CISM, CRISC, FAIR Fundamentals, etc.
Benefits
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Lead the design and implementation of secure architecture to support apree's evolving tech stack. • Build out and refine security automations related to vulnerability scanning, configuration management, IT integrations, detection engineering and automated incident response. • Provide Tier 4 (expert-level) support for complex cloud security incidents, escalations, and system issues. • Collaborate with engineering, IT, compliance, and business stakeholders to ensure security standards and policies are implemented consistently. • Stay current with emerging security threats, cloud technologies, and regulatory frameworks relevant to healthcare.
Director of Security
Referral Jobs (askreferral.io)Fastest way to get interviewed for most relevant role. Building AI Interviewers.
• Define, implement, communicate and maintain security strategy, policies, goals and requirements aligned with business strategy, and manage security resources, to support the company’s objectives • Work with the Security Council and Remote’s senior leadership in developing Remote’s Information Security vision, strategy and road-map of Remote’s Security function • Recruit and nurture individual growth to build an autonomous and high performing Security team • Be an advocate of information security best practices and proactively looking to improve and drive Remote’s security posture, driving efforts to improve Security Awareness across company • Drive Remote’s security risk management program, by partnering with Legal, Data Protection and Finance in developing and managing our enterprise risk management framework(s), and collaborating with senior leaders in reducing Information Security risks • Manage and improve upon our Application Security initiatives and personnel to make sure Remote is delivering the most secure Platform possible to its customers • Build a Security Incident Response processes and culture within the Security Team • Report to Remote’s top management about security risks, threats and their potential impact, incidents and security performance • Drive security compliance requirements from customers, standards and regulations • Supervise the management and improvement of Remote’s ISMS as defined in Remote’s ISMS roles and responsibilities document
• Own the full sales cycle with pentesting firms across North America • Build pipeline from scratch through direct outbound • Run technical conversations with security leaders and engineering buyers • Convert buyers who are actively evaluating similar tools • Drive early GTM execution across sales, partners, marketing, and internal teams • Activate select partners and resellers when useful to accelerate volume
• We are looking for a Security Technician to join the team of a public sector client. • If you are eager to enhance your professional career in this area and are seeking a company that invests in your growth, come meet us and submit your CV.
