Principal Advisor providing strategic leadership in health, safety, and security at DOC. Focused on driving long - term maturity, strengthening assurance, and lifting performance across the organisation.
About the role
- Cybersecurity Senior Consultant responsible for evaluating cybersecurity and resilience capabilities. Collaborating with clients to enhance security posture and compliance through assessments and advisory engagements.
Responsibilities
- Planning and executing cybersecurity and resilience assessments across technology and operational domains
- Data protection and information governance
- HIPAA Security and Privacy Rule assessments
- Third-party and vendor risk management
- Incident response, cyber resilience, and disaster recovery
- Business continuity and operational resilience
- Infrastructure and application security controls
- Assessing the design and operating effectiveness of cybersecurity and resilience controls against applicable regulatory requirements and industry frameworks
- Supporting integrated assessments that evaluate how cybersecurity controls enable broader business and operational resilience objectives
- Act as a strategic advisor to client security and risk functions
- Serve as an extension of client teams to lead or support program execution activities
- Mentor and supervise junior consultants; contribute to team development and internal knowledge-sharing
- Preparing clear, thorough documentation, reports, and deliverables independently and on schedule
- Communicating assessment scope, procedures, findings, and recommendations to both technical and non-technical client stakeholders
- Maintaining engagement quality and responsiveness throughout the delivery lifecycle, ensuring client confidence and satisfaction
Requirements
- Minimum of 3 years of total professional experience
- At least 2 years of hands-on experience delivering cybersecurity or IT risk assessments
- Strong working knowledge of cybersecurity operations and controls
- Strong working knowledge of data protection principles
- Strong working knowledge of HIPAA Security and Privacy Rule requirements
- Demonstrated ability to independently manage engagements from planning through reporting with limited oversight
- Strong written and verbal communication skills, particularly in documenting observations and explaining results to diverse audiences
- One or more relevant professional certifications (e.g., CISSP, CISA, HCISPP, or equivalent)
- Experience assessing or advising on HIPAA compliance, cybersecurity programs, business continuity and disaster recovery, operational or cyber resilience initiatives
- Prior experience at a public accounting or advisory firm delivering cybersecurity, privacy, or resilience services to healthcare or life sciences organizations
Benefits
- Comprehensive total rewards package
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Architect leading security strategy development and implementation for Kyndryl. Conducting performance testing and ensuring compliance with security guidelines and audits.
Junior Consultant working on Cyber Security standards and customer advisory at MKS4U IT - Beratungs GmbH. Engaging in security assessments and developing long - term security strategies.
IT - Security Consultant at Institut für Datenschutz und Datensicherheit guiding IT compliance and security strategies. Engage with clients to enhance IT security practices across Germany.
Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.
Infra Security Engineer focusing on endpoint security solutions in South Korea's urban mobility services. Collaborating on security architecture and threat detection initiatives.