Cyber Security Advisor

Responsibilities: • Act as a trusted advisor to management and key stakeholders, ensuring cybersecurity considerations are integrated into decision-making. • Ensure cybersecurity best practices align with business objectives and delivery goals without hindering operational efficiency. • Provide cybersecurity expertise during projects and engagements to mitigate risks and enhance security controls. • Work with cross-functional teams to enhance the organization's overall cybersecurity resilience. • Identify, assess, and provide guidance on mitigating cybersecurity risks across business functions. • Support compliance with relevant cybersecurity laws, regulations, and industry standards. • Contribute to the development and implementation of security strategies, policies, and frameworks. • Promote cybersecurity awareness and best practices among employees and stakeholders.

Qualifications • Typically, 10+ years of experience in cybersecurity, information security, IT governance, risk management, or compliance. • Bachelor’s degree in Computer Science (or related field) preferred alternatively equivalent work experience • Proven leadership in developing, implementing, and overseeing security governance frameworks, policies, and strategies. • Experience in aligning security and data with business objectives at a strategic level. • Hands-on experience with enterprise risk management, regulatory compliance (e.g.,, ISO 27001, NIST, PCI DSS), and security program development. • Strong expertise in third-party/vendor risk management and security governance across complex business environments. • Demonstrated ability to lead security incident response and crisis management at an enterprise level. • Proven ability to influence senior leadership and board-level discussions on security risks and strategies. Other qualifications/optional certification • Communication skills for stakeholder interaction and knowledge sharing. • Understanding of business operations and their impact on security. • The ability to analyze security risks and assist in risk mitigation efforts. • Certifications such as CISSP, CIPM, CISA, ISO/IEC 27001 Lead Auditor • Additional specializations (e.g. AI Governance, Cloud Security, CIPP/E)