Security Consultant - Southwest region

Your way to impact

In this role you will identify, assess, and mitigate information security risks across our organization’s infrastructure, applications, and business processes. This role combines technical expertise with business acumen to protect our digital assets while enabling business objectives. This position is highly collaborative, and will involve developing close working partnerships with engineering, architecture, risk management, compliance, legal, communications, government relations, and oversight teams.

Your day to day

• In your day-to-day role you will define methods and procedures for new or special assignments, collaborating with cross-functional teams to drive security initiatives that align with business needs and objectives.
• Lead complex, high-impact security projects of diverse scopes, applying an in-depth understanding of business trends and security challenges to develop innovative solutions.
• Recognized as a security expert, independently resolving the most complex security challenges and providing strategic direction on problem resolution across the security domain.
• Possess a keen awareness of the broader impact of decisions, with initiatives often leading to enterprise-wide improvements that enhance security practices and operational efficiency.
• Guide team members through complex challenges, fostering their growth and development while maintaining a focus on high-impact results.

What do you need to bring

• Knowledge of current and emerging information technologies (e.g., AI / ML); cybersecurity threats and vulnerabilities; risk management processes and practices; industry standard control frameworks and best practices (e.g., NIST, ISO); and prominent cybersecurity and privacy regulations globally.
• Strong work ethic with proven ability to learn quickly, prioritize work, and manage complex deliverables to completion under established deadlines.
• Willingness to drill down into complex topics as needed to understand and validate key tactical or technical details with strategic level implications, and ability to identify and articulate those “big picture” considerations for key audiences.
• Superb consultative, adjudicative, investigative, and influencing skills, including business acumen, stakeholder empathy, and conflict resolution, as well as general comfort working in a dynamic, global, fluid, and matrixed working environment.
• Exceptional verbal and written communication and analysis skills, including experience developing high-quality written analysis, strategy, or policy documents
• Prior involvement in analysis, interpretation, and communication of legal or regulatory technology policy requirements.
• Practiced at targeting and delivering written work products and verbal presentations to varied audiences (e.g., executives, engineers, customers, regulators, etc.)
• Unquestionable professional and ethical integrity, ideally demonstrated through experience with projects of a sensitive, privileged, or confidential nature.
• Ability to approach and understand problems from a statistical or quantitative perspective and draw meaningful, accurate conclusions, as well as scrutinize models and inferences for misleading or overlooked considerations.
• Master’s Degree in a relevant discipline, such as cybersecurity, business, public policy, economics, statistics, risk management, or computer science; outstanding bachelor’s degree candidates will be considered.
• Certifications preferred: CISM, CISA, CISSP, CGEIT, AAIA
• 10+ years total experience in technology or security governance, policy, risk management, and / or compliance roles.  
• 5+ years total experience in a leadership/management role.