Consulting - Associate
Roswell, Georgia, GA
Job Type
Full-time
Description

  
At risk3sixty, we are employee-centric innovators that dream big, take calculated risks, and challenge the status-quo. It’s simple: we can’t accomplish our mission without diverse teams innovating and pushing together. Therefore, we prioritize giving all team members an opportunity to enrich and enlarge their careers through customized career planning and opportunities to participate in various management and leadership training programs built in-house.    


As an Associate, you will have the opportunity to help our high-growth tech clients in the private, public, and social sectors solve their most pressing problems and make lasting improvements. For some of our clients, we run their program and serve as their GRC team. For others we implement their security and compliance programs in collaboration with their team; for other clients, we serve as strictly an external auditor.  

Requirements


In this role, you will: 

  • Regularly interact with peers and clients as both an assessor and an advising consultant.  
  • Own entire project workstreams and manage client relationship.  
  • Ensure projects are being executed within scope, on time, and on budget.  
  • Provide timely, comprehensive, and accurate information and reports in both written and verbal communication to internal and external management. 
  • Lead and effectively document client interviews and walkthroughs.  
  • Research industry leading practices related to Governance, Risk and Compliance (GRC).  
  • Manage priorities, and tasks on projects to achieve delivery of critical numbers. 
  • Adhering to risk3sixty methodology, policies, quality standards, and procedures.  
  • Work in a fast-paced environment where no two weeks are the same. 
  • Keep up to date with industry trends and technology developments.  
  • Work towards relevant industry recognized certifications. 
  • Learn the rules of many different security, compliance, and privacy frameworks (e.g., ISO 27001/27701, SOC 1, SOC 2, SOC 3, PCI DSS, HITRUST, CMMC etc...). 

Qualifications  

  • Bachelor's degree in computer science, business management, technology or equivalent years of experience directly related to the duties and responsibilities specified. 
  • 2+ years of technology-related experience. 
  • Certification in relevant technologies, Cloud providers or demonstration of ongoing learning (i.e., CPA, CISA, CISSP, AQSA, QSA, OSCP, CIPM etc.). 
  • Proven experience of managing security programs or complex engagements within deadlines.  
  • Ability to work collaboratively in a team and create an inclusive environment with people at all levels of an organization.  
  • Capability to drive an independent workstream in the context of a broader team project. 
  • Ability to break down and solve problems through quantitative thinking and analysis.  
  • Ability to communicate effectively, both verbally and in writing, in English. 
  • Ability to work on-site or remotely as a valuable contributor to a collaborative team. 
  • Capable of simultaneously managing assigned tasks for multiple projects. 

Bonus Points: 

  • Understanding of security frameworks such as ISO 27001, SOC 2, NIST, etc.  
  • Exposure to consulting/client-facing experience.  
  • Entry-level security certifications (e.g., Security+, CCSK).  


Education and Experience  

  • Bachelor’s degree in information security, Computer Science, Digital Forensics, Cyber Security, or equivalent years of professional experience to meet job requirements and expectations or equivalent military experience required. 
  • Ability to interact with external auditors and members of senior management to understand their Information Security objectives, expectations, manage project scope, and communicate and interpret key priorities and issues, including ISO requirements and interpretative guidance.  
  • Exceptional written and verbal communication skills.  
  • Ability to manage complex engagements, meet deadlines.  
  • Exemplify a positive attitude and strong work ethic with a commitment to teamwork and professionalism.  
  • Security certifications (e.g., CISA, CCSK, ISO 27001 Lead Implementer) a plus. 

Physical Requirements: 

  • Prolonged periods sitting at a desk and working on a computer. 
  • Must be able to lift to 10 pounds at times