Consultant, Cybersecurity

Company Description

Sia is a next-generation, global management consulting group. Founded in 1999, we were born digital. Today our strategy and management capabilities are augmented by data science, enhanced by creativity and driven by responsibility. We’re optimists for change and we help clients initiate, navigate and benefit from transformation. We believe optimism is a force multiplier, helping clients to mitigate downside and maximize opportunity. With expertise across a broad range of sectors and services, our 3,000 consultants serve clients worldwide from 48 locations in 19 countries. Our expertise delivers results. Our optimism transforms outcomes.

Why Join The Sia Team?

Excellence | Entrepreneurship | Innovation | Teamwork | Care & Support | Employee Wellbeing

These are the six core values that guide all our actions. As an expression of our values, our Sia team concept describes our commitment to fostering a sense of community within and among our offices. We believe that knowledge sharing is the key, not only to innovation, but to the growth and development of our people.

Your experience at Sia will be enriched by a(n):  

• Entrepreneurial journey
• Career advocacy program that supports achieving professional development goals through guidance, and real-time feedback
• Continuous learning & development opportunities
• Diversity, equity, and inclusion programs with an ever-growing list of global affinity initiatives

Job Description

You will join Sia Partners’ Cybersecurity, Data Protection and Resilience Global Business Line. In accordance with your skills and expertise, you will work - in Consulting, Implementation and Audit - on one or more of our following offers: Strategy, Risk, Compliance, Operations, Data Protection, Offensive Security, Resilience and Training.   

Key Responsibilities 

• Lead and/or support cybersecurity engagements across diverse industries as part of an on-site or remote project teams 
• Contribute to the development of high-quality and timely deliverables that clearly communicate project findings and recommendations 
• Facilitate effective meetings and communicate project outcomes and technical findings clearly to the stakeholders across various levels of the client organization 
• Execute industry-standard and regulatory assessments e.g., NIST, ISO 2700x, U.S. Privacy Laws, DORA, GDPR, NYDFS Part 500, SWIFT CSCF 
• Contribute to the development of high-quality and timely deliverables that clearly communicate project findings and recommendations 
• Collaborate closely with both internal and client stakeholders to support effective engagement execution 
• Deliver regular status updates to project stakeholders including Senior Management 
• Assist in business development efforts, including client proposal creation and thought leadership  
• Engage in internal initiatives, and actively contribute to the growth of our Cybersecurity practice 

Qualifications

• Bachelor’s degree required in Business Management, Finance, Computer Science, Engineering, IT, Mathematics, etc.
• Two or more years of recent client-facing management consulting experience with an emphasis on cyber-related projects, ideally covering one or more of the following topics: 
  • Cybersecurity and IT Risk requirements, metrics, reporting procedures and control frameworks (NIST, ISO, CMMC, SANS, etc.) 
  • Operational Resilience frameworks including policies and procedures for BCP/DR, Tabletop exercises, incident response and crisis management 
  • Third Party Risk Management (TPRM) \
  • Penetration testing 
  • Vulnerability and patch management 
  • Cloud security and/or network expertise (AWS, Azure, GCP) 
  • Knowledge of cryptography and/or blockchain a plus 

• Strong knowledge of data privacy and protection laws and regulations e.g., EU-GDPR, CCPA/CPRA, HIPAA, GLBA, and CDPA 

• Holds or is willing to obtain within the first year of joining one of the following certifications: CISSP, CISM, CISA, CRISC, CEH, etc. 

Additional Information

Compensation & Benefits 

• Salary + Annual Discretionary Bonus
• Healthcare coverage that includes medical, dental, vision and life insurance policies
• Generous time off 
• Parental leave paid at 100% of base pay for all new parents regardless of gender 
• Building Healthy Families Program
• 9 Company Holidays + 1 Floating Holiday 
• 401(k) Plan - 4% matching on day 1
• College save-up plan & college loan repayment plan
• Monthly cell phone stipend 
• Commuter Benefits 
• Gym Reimbursement through firm medical plan

Our Commitment To Diversity

At Sia, we believe in fostering a diverse, equitable and inclusive culture where our employees and partners are valued and thrive in a sense of belonging. We are committed to recruiting and developing a diverse network of employees and investing in their growth by providing unique opportunities for professional and cultural immersion. Our commitment toward inclusion motivates dynamic collaboration with our clients, building trust by creating an inclusive environment of curiosity and learning which affects lasting impact. Please visit our website for more information. 

Hybrid Workplace Guidelines

Sia is committed to providing a flexible workplace environment that supports client, business, and market needs. Consultants located in our primary market office locations—New York City, Charlotte, Seattle, and San Francisco are expected to live within a reasonable commuting distance and attend the office at least three days per week. For applicants in other markets, including those without a local office, we offer more flexible in-person requirements to accommodate your location. 

Work Authorization & Sponsorship 

At this time, Sia does not intend to pursue employment with applicants who will require now or in the future visa by our company for work authorization in the United States (i.e., H1-B visa, F-1 visa (OPT), TN visa, or any other non-immigrant status).  

Sia is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.