Cyber Advisory - Senior Consultant

The Cyber Advisory team provides cyber security assurance, advice and guidance to clients on all aspects to help them build and maintain a robust security environment. We identify cyber risks and work closely with clients to understand their unique set of digital opportunities and challenges, providing tailored and strategic advice and guidance. We support our clients in assessing, building and managing their cyber security capabilities, from ensuring compliance with industry regulations, and mitigating potential risks to moving them towards a more mature security posture. Within the national cyber security team you will be responsible for delivering cyber security assurance and advisory work to a range of clients nationally and internationally.

• Financial Services, Banking, Insurance and Investment
• Corporates/Private Sector/Industry & Services
• Central and Local Government
• Retail and Consumer products organisations

• Actively involve in the delivery of our Internal Audit/Consulting engagements.
• Act as a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards…) and leading industry-based practices (e.g. NIST CSF, ISO 2700x…)
• Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior client management and key senior stakeholders.
• Maintaining an expertise and currency in industry trends.
• Managing and mentoring junior consultants assigned as members of engagements.
• Contributing to the development of project management, quality assurance and professional consulting and auditing approaches/methodologies.
• Use technical expertise to deliver projects and ensure that our clients comply with their regulatory obligations including NIS2 or DORA.

• Full understanding of the DORA regulation & NIS2 Directive and experience in implementing the regulations.
• Experience working with regulated financial services entities.
• 3+ years' varied experience in information security, risk management.
• Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS2 and DORA.
• Hands‑on experience building credibility with external stakeholders.
• Proven ability to guide and collaborate with senior stakeholders in a similar GRC, security, or risk management role.
• Excellent communication skills, with the ability to present complex information clearly and effectively to non‑technical stakeholders.
• The ability to explain complex topics to a diverse range of audiences.
• Strong attention to detail and the ability to deliver high quality work.
• CompTia Security+, CRISC, CISM or CISSP certification advantageous.

Forvis Mazars is a leading global professional services network. The network operates under a single brand worldwide, with just two members: Forvis Mazars LLP in the United States and Forvis Mazars Group SC, an internationally integrated partnership operating in over 100 countries and territories. Both member firms share a commitment to providing an unmatched client experience, delivering audit & assurance, tax and advisory services around the world. Through our reach and areas of expertise, we help organisations respond to emerging sustainability issues in the global marketplace including human rights, climate change, environmental impacts and culture. We are one diverse, multicultural, multi‑generational team with a huge sense of connection and belonging. This is a place where you can take ownership of your career, get involved, believe in yourself and put your ideas into action. At Forvis Mazars, we empower our people and celebrate individuality. We thrive on teamwork and are agile. We have bold foresight and give people the freedom to make a personal contribution to our shared purpose. We support one another to deliver quality, create change and have a deeper understanding, to help make an impact so that everyone can reach their full potential.