Role Overview :

The Cyber Security Senior Consultant will work closely with client executives and management teams to identify, assess, and manage technology, cybersecurity, and operational risks. This role involves delivering risk advisory, IT audit, and cybersecurity consulting services while building strong client relationships and contributing to high-quality engagement execution.

Key Responsibilities :

Client Advisory & Risk Management :

- Partner with client leadership and management teams to understand business operations and identify financial, operational, and technology risks.

- Develop deep knowledge of client businesses and industries through direct engagement and multi-workstream involvement.

- Provide strategic advisory support by recommending and implementing processes, controls, and governance frameworks aligned to business objectives.

Cybersecurity & IT Risk :

- Assess, manage, and optimize IT and cybersecurity risk across areas including :

Cybersecurity and information security
IT strategy and governance
Regulatory compliance
Business continuity and disaster recovery
Third-party and vendor risk

- Evaluate client environments against industry frameworks and standards (e.g., COSO, COBIT, NIST, ISO), identifying design and operational gaps.

- Communicate findings, risks, and remediation recommendations clearly to client stakeholders.

Audit & Compliance :

- Assist in the development and execution of IT audit and risk assessment programs, including :

IT General Controls (ITGC)
Application controls
SOX and SOC audits

- Cybersecurity and technology risk assessments

- Support assessments related to business continuity, cybersecurity posture, regulatory compliance, and IT operations.

- Ensure audit workpapers are prepared, documented, and reviewed in accordance with industry-accepted internal audit methodologies.

Reporting & Documentation :

- Draft clear, concise executive summaries, findings, and final client reports.

- Present audit results and recommendations in a professional, client-ready manner.

- Maintain high-quality documentation to support conclusions and compliance requirements.

Stakeholder & Relationship Management :

- Act as a trusted advisor, delivering superior client service through effective communication and responsiveness.

- Build and maintain strong relationships with clients and internal stakeholders.

- Collaborate with cross-functional teams to deliver integrated solutions.

Professional Development & Firm Contribution :

- Demonstrate a strong commitment to continuous learning and professional development through training, certifications, and cross-functional exposure.

- Contribute to internal initiatives, knowledge sharing, and process improvements.

- Leverage entrepreneurial mindset to build internal and external networks while participating in team activities and firm culture initiatives.

Qualifications & Experience :

Education :

- Bachelors degree in Information Systems, Computer Science, Accounting, Finance, or a related field (required)

Experience :

- Minimum 3+ years of experience in :

IT Audit
Cybersecurity
IT Risk or Technology Risk Advisory

- Prior experience performing SOX and SOC audits is required.

- Experience in a client-serving role within a consulting or professional services firm is strongly preferred.

Certifications (Preferred) :

- One or more of the following certifications :

CISA
CISSP
CISM
CIA
CPA

Skills & Competencies :

- Strong analytical, technical, and problem-solving skills

- High attention to detail with sound professional judgment

- Excellent verbal and written communication skills

- Strong collaboration, organization, and time-management abilities

- Ability to manage multiple engagements and meet deadlines

- Willingness and ability to travel as required and support additional projects