Manager in Cybersecurity Risk
Washington, DC, United States
Applications have closed
Sia Partners
Sia Partners is a next-generation consulting firm focused on delivering superior value and tangible results to its clients as they navigate the digital revolution. We guide their projects and initiatives in strategy, business transformation, IT...Company Description
Sia Partners is a next-generation consulting firm dedicated to creating state-of-the-art narratives for transformation and innovation and deploying them at scale. Our goal is to deliver superior value and tangible results to our clients as they navigate the digital revolution and achieve transformations which generate a positive impact. Our global footprint and expertise in more than 40 sectors and services allow us to enhance our clients’ businesses worldwide. We guide their projects and initiatives in strategy, business transformation, IT & digital strategy, and Data Science.
Why Join The Sia Village?
Excellence | Entrepreneurship | Innovation | Teamwork | Care & Support | Employee Wellbeing
These are the six core values that guide all our actions. As an expression of our values, our Sia Village concept describes our commitment to fostering a sense of community within and among our offices. We believe that knowledge sharing is the key, not only to innovation, but to the growth and development of our people.
Your experience at Sia Partners will be enriched by a(n):
- Entrepreneurial journey
- Career advocacy program that supports achieving professional development goals through guidance, and real-time feedback
- Continuous learning & development opportunities
- Diversity, equity, and inclusion programs with an ever-growing list of global affinity initiatives
- Annual seminar, an in-person value-add experience, that allows you to network with colleagues throughout North America
Job Description
Our US Cybersecurity team is an integral part of our Global Store Front, providing support to our clients on a wide array of topics, including but not limited to:
- Strategy
- Risk
- Compliance
- Operations
- Resilience
- Training
Responsibilities
Offerings & Solutions
- Develop, manage, deliver or support on a wide range of client offerings, including: NIST CSF, 800-53, etc., FFIEC CAT, NYDFS Part 500, Fedline Security and Control Procedures, SWIFT CSCF, ISO 2700x, Cyber Tabletops, RCSA, TPRM programs, BCP/DR reviews, cyber risk frameworks, governance and policy suite, etc.
- Support and enhance our Operational Resilience offering
- Support go-to-market for our proprietary Cyber Risk Review (C2R) SaaS which quantifies cyber risk through attack modeling based on the NIST framework
Client Delivery
- Apply strategic and critical thinking to develop recommendations that address client challenges
- Summarize and present findings to executive sponsors of projects
- Collaborate with engagement team to deliver high-quality work products
Business Development
- Manage projects and relationships with flagship and key account
- Lead and support business development and proposal efforts
- Senior Manager or Manager will be expected to advance sales efforts and lead internal corporate initiatives
Internal Initiatives
- Work with the MD of Cybersecurity to manage the team regarding internal initiatives whil ensuring client deliverables are submitted on time
- Provide guidance and mentoring as a Career Advocate to junior team members
- Manage program sites as a repository for all project information
Qualifications
- Bachelor’s degree required (Master’s degree a plus) in either: Business/Finance, Computer Science, Engineering, IT, Mathematics, etc.
- 7 to 11 years of recent client-facing management consulting experience with an emphasis on cyber related projects with strong working knowledge and application of frameworks and standards such:
- NIST, ISO, NYDFS, FFIEC CAT, CMMC, SANS, RCSA, etc.
- Cybersecurity requirements, metrics, Indicators of Compromise (IOC), reporting procedures
- Policies, procedures, frameworks and playbooks for operational resilience programs, TPRM, BCP/DR, etc.
- Incident response and crisis management
- Tabletop exercises, including scenarios, After Action Reports (AAR) and playbooks
- Non-Financial Risk quantification, especially cyber, a strong plus
- Ability to demonstrate and apply knowledge of data protection regulation and laws to consulting projects, such as the EU-GDPR, CCPA/CPRA, HIPAA, GLBA, and CDPA
- Holds or is willing to obtain within the first year of joining one of the following certifications: CISSP, CISM, CISA, CRISC, FAIR, etc.
- Based near one of our U.S. operating offices and an eligibility to work within the United States
Additional Information
Compensation & Benefits
- Salary + Annual Discretionary Bonus
- Healthcare coverage that includes medical, dental, vision and life insurance policies
- Generous time off
- Parental leave paid at 100% of base pay for all new parents regardless of gender
- Future Moms Program
- 9 Company Holidays + 1 Floating Holiday
- 401(k) matching
- College save-up plan & college loan repayment plan
- Monthly cell phone stipend
- Commuter Benefits
- Gym Reimbursement through firm medical plan
Our Commitment To Diversity
Diversity, equity, inclusion, and belonging (DEIB) are part of Sia Partners’ DNA. Thanks to our expertise in several sectors and our international growth, our teams include a variety of experiences and cultures. We’re confident that promoting DEIB creates an environment in which everyone can reach their full potential.
Our global network, DEIB@Sia Partners, brings together our people worldwide to facilitate local and global progress, focused on the following areas:
- Gender equality (global Gender Equality Index score of 91/100 for FY19-20)
- LGBTQ+
- Race & Ethnicity
- Working Parents
- Disabilities
Sia Partners is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.
Hybrid Workplace Guidelines
Sia Partners maintains its hybrid workplace arrangements and provides a flexible workplace environment that is driven by client and business/market needs. While our firm does support hybrid work, there are times that we may require our consultants to work onsite at one of our Sia offices or a client office full-time. Consultants are expected to have the ability to be flexible with work location depending upon business needs. When in-between client engagements, Consultants typically work onsite at a local Sia office 2+ times per week.
To learn more about our mission, values, and business sectors, please visit our website.
Sia Partners is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CCPA CISA CISM CISSP CMMC Compliance Computer Science CRISC FFIEC Finance GDPR GLBA Governance HIPAA Incident response Mathematics NIST NIST 800-53 SaaS SANS Security Impact Analysis Strategy
Perks/benefits: Career development Cell phone stipend Equity Fitness / gym Flex hours Flex vacation Health care Medical leave Parental leave Salary bonus Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs