Enable job alerts via email!
Cyber Risk Consultants
eTeam
Richmond (VA)
On-site
USD 90,000 - 120,000
Full time
Job summary
A leading cybersecurity consultancy is seeking an experienced Cyber Risk Consultant to assist enterprise clients in managing cybersecurity risks. The role involves conducting risk assessments, developing risk management frameworks, and providing regulatory compliance guidance. Ideal candidates have a strong background in cybersecurity, excellent communication skills, and at least 5 years of experience in risk management. This position is based in Richmond, Virginia.
Qualifications
- Minimum 5 years of experience in cybersecurity risk management or compliance consulting roles.
- Strong understanding of cyber risk methodologies and enterprise risk frameworks.
- Ability to communicate complex risk issues to technical and non-technical audiences.
Responsibilities
- Conduct enterprise-level cyber risk assessments and maturity evaluations.
- Identify and analyze security risks to critical assets, systems, and data.
- Develop and implement cyber risk management frameworks aligned with industry standards.
Skills
Education
Tools
We are seeking an experienced and analytical Cyber Risk Consultant to help enterprise clients assess, manage, and mitigate cybersecurity risks. This role focuses on developing and implementing enterprise-wide risk management frameworks, ensuring compliance with regulatory standards, and improving overall security posture.
- Conduct enterprise-level cyber risk assessments and maturity evaluations.
- Identify and analyze security risks to critical assets, systems, and data across IT and OT environments.
- Develop and implement cyber risk management frameworks aligned with industry standards (, NIST CSF, ISO , CIS Controls).
- Provide guidance on regulatory compliance (, GDPR, HIPAA, SOX, PCI-DSS, CCPA) and industry-specific requirements.
- Create and maintain risk registers, control matrices, and risk treatment plans.
- Facilitate risk workshops and collaborate with stakeholders across security, IT, legal, and compliance teams.
- Deliver executive-level reports and recommendations on risk mitigation strategies and security program enhancements.
- Support internal and external audit processes, control testing, and third-party risk assessments.
- Bachelor's degree in Cybersecurity, Information Systems, Risk Management, or related field.
- years of experience in cybersecurity risk management or compliance consulting roles.
- Strong understanding of cyber risk methodologies, threat modeling, and enterprise risk frameworks.
- Experience with GRC tools (, Archer, OneTrust, ServiceNow GRC, MetricStream).
- Working knowledge of regulatory and standards frameworks : NIST, ISO, CIS, COBIT, GDPR, HIPAA, SOX, etc.
- Ability to communicate complex risk issues to technical and non-technical audiences, including C-suite stakeholders.
- Professional certifications such as CRISC, CISA, CISSP, CISM, or ISO Lead Implementer / Auditor.
- Experience in large enterprise or consulting environments.
- Familiarity with cloud risk management (AWS, Azure, GCP).
- Strong analytical and critical thinking abilities.
- Excellent written and verbal communication.
- Ability to work independently and collaboratively in cross-functional teams.
- High level of integrity and professional ethics.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
