Consultant - Strategy & Risk | Remote, Canada

Our Consultants in the cybersecurity and risk management consultancy are essential contributors to security assessments, compliance initiatives and risk management strategies and program development. This role requires a strong understanding of security principles, risk frameworks, security technical solutions, with the ability to communicate security risks and compliance findings effectively to clients, both verbally and written.

• Assist in conducting security risk assessments, gap analysis, compliance regulatory framework assessments and other security risk and compliance related activities
• Support compliance evaluations against standards such as NIST 800-171/53, ISO 27001, CMMC, HIPAA, PCI, etc.
• Help develop risk mange programs, assess security controls
• Document findings, analysis and recommendations and assist in preparing reports for clients during the engagement
• Support the creation and refinement of security policies, procedures, standards and governance frameworks
• Participate in security awareness training throughout the year as directed by the company
• Work alongside Senior and Principal Consultants to deliver cybersecurity solutions to clients
• Assist in preparing presentations, reports and recommendations for clients
• Help translate technical security risks into business-friendly language for client stakeholders
• Support client workshops, risk discussions and training sessions with clients
• Track progress on security projects and deliverables, ensuring deadlines are met
• Participate in internal training sessions, webinars, and industry events

• Bachelor’s degree and approximately 2-5 years of related work experience
• Understanding of cybersecurity principles and risk management frameworks (NIST, ISO 27001, CIS, CMMC, PCI, etc.)
• Strong analytical and problem‑solving skills for security assessments
• Excellent verbal and written communication skills
• Ability to work collaboratively in a fast‑paced environment with clients and team members
• Process‑oriented individual with strong attention to detail and strong organizational skills
• Hold or willing to pursue relevant certifications in the cybersecurity and risk management industry such as CISSP, CISM, CRISC, CCSP, CMMC CCP/CCA, ISO 27001 (Lead implementer)

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem‑solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. Optiv Chips In encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, view our Applicant Privacy Notice.