Governance, Risk & Compliance Consultant

Job title:

Governance, Risk & Compliance Consultant

Company

Malleum

Job description

About Us
We are a premier cybersecurity consultancy, blending advanced offensive and defensive strategies to safeguard our customers.With a team known for its contributions to cybersecurity research at platforms like Black Hat and DEF CON, we excel at identifying and mitigating sophisticated threats. Large enterprises from a range of industries trust us for advanced adversarial emulation and for critical support in managing their cyber frameworks. Governments trust us with classified projects, relying on our precision and discretion to handle sensitive information securely.We’re a small group that makes a big impact. Our deep technical expertise and our commitment to clients continues to fuel our success, and with success comes growth – we’re currently searching for an experienced GRC Consultant…Role Profile
In this position your mandate is to ensure that our clients meet the stringent cybersecurity standards set by regulatory bodies in their industries and jurisdictions. Working remotely, you’ll play a key role in supporting the delivery of compliance projects for enterprise clients.This is a challenging role, but also an outstanding opportunity to join an accelerating startup in a position that’s crucial to the company’s continued success.Key Responsibilities

• Collaborating with clients and with your colleagues in our GRC practice, support the design and implementation of security measures and controls in line with cybersecurity standards.
• Assist organizations with the review and update of existing security policies and procedures to align with evolving requirements and best practices in cybersecurity.
• Support the preparation of detailed reports on the status of an organization’s cybersecurity compliance. Prepare and deliver thoughtful, insightful, and professional presentations to clients and internal Malleum stakeholders.
• Grow your knowledge of the latest cybersecurity threats and trends, as well as updates to the relevant industry standards such as the CMMC framework.
• Achieve utilization targets, complete projects on time and budget, and meet quality standards.
• Study, learn, test, document, execute and seek to continuously improve scalable consulting services processes to effectively deliver customer engagements while achieving a high level of customer satisfaction.
• Develop a thorough understanding of our solution and service offerings, sales process, marketing materials, contract and statement of work (SOW) structure, methodologies, delivery standards, work tools, and processes.

Candidate Profile
We’re looking for a star. As an ideal candidate you’re a natural consultant: driven, highly organized, autonomous and analytical, with outstanding communication and interpersonal skills, and the ability to quickly establish your credibility and build trusting relationships with clients.You have experience in a cybersecurity consulting practice, you thrive under pressure, you learn fast, and you have a developing understanding of NIST and related frameworks.It is essential that you fulfill the requirements to acquire a SECRET level II security clearance.Key Qualifications

• Post-secondary education in information technology, computer science, or equivalent combination of education and experience.
• 3-6 years of experience in cybersecurity / GRC compliance consulting.
• Knowledge of the CMMC framework, NIST SP 800-171, and DFARS regulations is a strong asset.
• Certified as a CISSP, CRISC, CISA, or CISM, or working on it.
• Sound knowledge of a range of cybersecurity technologies and solutions.
• Superior communication and presentation skills with the ability to explain complex security concepts to non-technical staff.
• Exceptional client-service orientation, with the ability to build trust and develop rapport with a broad range of client stakeholders, including Defense Industrial Base compliance and information system professionals.
• Independent and autonomous, with the drive to seek out and leverage internal resources as needed, and proactively take ownership of their work and career development.
• Excellent analysis and problem-solving skills, especially in the information systems, security, and privacy space.
• Ability to learn new subject matter and context quickly and to maintain market and subject matter awareness.

Next Steps
If you get what this job is all about, you recognize yourself in the language, and you’re eager to jump onto a fast-moving train, we want to hear from you.Powered by JazzHR

Expected salary

Location

Ottawa, ON

Job date

Sat, 08 Feb 2025 00:12:51 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (globalvacancies.org) you saw this job posting.