Cyber Security Advisor

Job description:

Responsibilities:

• Act as a trusted advisor to management and key stakeholders, ensuring cybersecurity

considerations are integrated into decision-making.

• Ensure cybersecurity best practices align with business objectives and delivery goals without

hindering operational efficiency.

• Provide cybersecurity expertise during projects and engagements to mitigate risks and

enhance security controls.

• Work with cross-functional teams to enhance the organization's overall cybersecurity

• Identify, assess, and provide guidance on mitigating cybersecurity risks across business

• Support compliance with relevant cybersecurity laws, regulations, and industry standards.

• Contribute to the development and implementation of security strategies, policies, and

• Promote cybersecurity awareness and best practices among employees and stakeholders.

• Typically, 10+ years of experience in cybersecurity, information security, IT governance, risk management, or

• Bachelor’s degree in Computer Science (or related field) preferred alternatively equivalent work experience

• Proven leadership in developing, implementing, and overseeing security governance frameworks, policies, and

• Experience in aligning security and data with business objectives at a strategic level.

• Hands-on experience with enterprise risk management, regulatory compliance (e.g.,, ISO 27001, NIST, PCI

DSS), and security program development.

• Strong expertise in third-party/vendor risk management and security governance across complex business

• Demonstrated ability to lead security incident response and crisis management at an enterprise level.

• Proven ability to influence senior leadership and board-level discussions on security risks and strategies.

Qualifications/optional certifications:

• Communication skills for stakeholder interaction and knowledge sharing.

• Understanding of business operations and their impact on security.

• The ability to analyze security risks and assist in risk mitigation efforts.

• Certifications such as CISSP, CIPM, CISA, ISO/IEC 27001 Lead Auditor

• Additional specializations (e.g. AI Governance, Cloud Security, CIPP/E)