Principal Consultant, Security Governance

🔥 18 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Presidio

Presidio

1001 - 5000 employees

🤖 Artificial Intelligence

🔒 Cybersecurity

🏢 Enterprise

Artificial Intelligence • Cybersecurity • Enterprise

Presidio is a global IT solutions and services firm that designs, implements, and manages agile, secure digital platforms to help enterprise customers accelerate digital transformation. Its offerings include cloud migration and modern platforms, managed services, AI and data analytics (including agentic and private AI), cybersecurity, networking, collaboration, and lifecycle/finops and procurement/consumption financing. Presidio serves regulated and enterprise sectors such as healthcare, media & entertainment, finance, public sector and utilities.

📋 Description

• Lead client engagements and project execution providing information security consultation and assessment services, helping our clients meet their compliance obligations by evaluating their business, technology, and operations against industry security standards • Educate, mentor, advise, and share your expertise with clients and colleagues to aid in making decisions on topics like Artificial Intelligence, organizational security strategy and services scope as well provide consultative guidance on complex projects • Providing clear, organized findings and recommendations to clients and tracking progress towards resolution and compliance • Consult/advise with C-level Security Leaders (CISO, CSO, CIO, etc.) and the Board of Directors with our most valued and strategic clients • Develop strategic, operational, and tactical recommendations tailored to each client with the intent to improve a client’s security posture and compliance position • Create detailed strategic security roadmaps with short-term, mid-term, and long-term goals that prioritize remediation recommendations and address all instances of non-compliance with applicable regulatory, statutory, contractual, and organizational obligations • Lead large security engagements in concert with other cybersecurity practices and Presidio teams • Develop security policies, standards, and procedures that are custom-tailored to each client’s unique culture, security goals, and organizational objectives using industry best practices and compliance requirements • Review, analyze, and assess key factors, including inherent risk, mitigating controls, business impact, likelihood and other key elements to determine organizational security risk • Ensure and assess client alignment to, and/or compliance with, applicable regulatory, federal, state, local, contractual, and organizational requirements and best practices standards such as ISO 27001, NIST Cyber Security Framework (CSF), PCI DSS, HIPAA, FERPA, NIST 800-171, CMMC, etc. • Work closely with organizations to conduct security program development by establishing the foundation for a best of breed security program architecture reference model using industry frameworks and standards such as ISO 27001, NIST 800-53, NIST CSF, etc. • Work with other seasoned Principal Security Consultants in a collaborative setting to support and assist on the execution and delivery of key services such as Cloud Governance, Advisory Services, security program development, documentation review, and security consulting services • Execute tabletop exercises after collaborating with client stakeholders to select the scenario then create an After-Action Report • Deliver PCI Advisory Services, including PCI Gap Analysis, SAQs, ROCs and AOCs • Deliver CMMC Advisory Services, including CMMC Readiness Assessments • Assist leadership in cybersecurity administrative functions, such as documentation maintenance, documentation creation, peer review, and other internal cybersecurity activities

🎯 Requirements

• Bachelor’s Degree with a focus on Information Security, IT, Computer Science, or Engineering preferred or the equivalent work experience and/or military experience • 5-8 years previous consulting experience • 5-8 years' experience conducting Information Security risk and compliance assessments • 5-8 years' experience evaluating compliance with regulatory and key IT standards such as HIPAA, PCI DSS, NIST CSF, ISO 27001, and other similar standards/frameworks • Cloud experience with AWS, Azure or Google Cloud Platform or non-foundational certification for any of these cloud platforms or one of the following cloud agnostic certifications: Certified Cloud Security Professional (CCSP), Certificate of Cloud Security Knowledge (CCSK), GIAC Cloud Security Essentials (GCLD) • Possess at least one of the following accredited, industry-recognized professional certifications from each list: List A ISC2 Certified Information System Security Professional (CISSP) ISACA Certified Information Security Manager (CISM) Certified ISO 27001 Lead Implementer List B ISACA Certified Information Systems Auditor (CISA) GIAC Systems and Network Auditor (GSNA) Certified ISO 27001, Lead Auditor, Internal Auditor 1 IRCA ISMS Auditor or higher—e.g., Auditor/Lead Auditor, Principal Auditor IIA Certified Internal Auditor (CIA)

🏖️ Benefits

• Health insurance • 401(k) matching • Professional development opportunities

Apply Now

Similar Jobs

🕒 Yesterday

GE Vernova

10,000+ employees

⚡ Energy

🚀 Aerospace

🤖 Artificial Intelligence

Principal Product Security Incident Responder leads PSIRT efforts at GE Vernova. Managing product vulnerabilities and cybersecurity incidents across business units while ensuring compliance with regulations.

Cyber Security

🕒 Yesterday

Switzerland Global Enterprise

51 - 200

🤝 B2B

🛍️ eCommerce

Principal Product Security Incident Responder managing product vulnerabilities and incident response for GE Vernova. Leading PSIRT efforts and deploying AI-powered tools for cybersecurity incidents.

Cyber Security

🕒 Yesterday

Empower

10,000+ employees

💸 Finance

💳 Fintech

👥 B2C

Information Security Principal Engineer leading cybersecurity incident management and response in a flexible work environment. Enhancing security practices and mentoring technical teams across the organization.

AWS

Cloud

Cyber Security

Python

🕒 Yesterday

CVS Health

10,000+ employees

⚕️ Healthcare Insurance

🛒 Retail

🧘 Wellness

Distinguished Architect specializing in security at CVS Health. Driving tech strategies and creating secure architecture while collaborating with cross-functional teams.

AWS

Azure

Cloud

Cyber Security

Google Cloud Platform

Microservices

🕒 Yesterday

9th Way Insignia

51 - 200

🔒 Cybersecurity

🤖 Artificial Intelligence

🏛️ Government

Cyber Security SME providing expert-level support across cybersecurity strategy, architecture, and operations. Leading innovative cyber defense strategies while mentoring junior staff.

Azure

Cloud

Cyber Security

ServiceNow

Splunk