At Optiv, we’re on a mission to help our clients make their businesses more secure. We’re one of the fastest growing companies in a truly essential industry.

In your role at Optiv, you’ll be inspired by a team of the brightest business and technical minds in cyber security. We are passionate champions for our clients, and know from experience that the best solutions for our clients’ needs come from working hard together. As part of our team, your voice matters, and you will do important work that has impact, on people, businesses and nations. Our industry and our company move fast, and you can be sure that you will always have room to learn and grow. We’re proud of our team and the important work we do to build confidence for a more connected world.

Optiv is seeking a Principal consultant to work on Integrated Risk Management (IRM) and Governance Risk Compliance (GRC) tools consulting projects. We are looking for an innovative and motivated consultant who can help customers transform their environment and adapt to digital disruptions they face in their business.  The Principal Consultant is a seasoned consultant with expertise in multiple domains of risk management, security and demonstrable experience in complex GRC implementations, developing risk and security strategies as well as building Statements of Work (SOW) and executing the implementation of those strategies, including leading teams in transformation program development.

Acts as overall industry leader and leader of technical excellence providing exceptional services and support to strategic clients setting the bar for others to aspire to.

Primary Duties and Responsibilities:

• Work with customers to help them articulate their business requirements and how those requirements translate into security features and functionality.

• Work with sales teams to deliver consultative conversations with customers and operate as the “tip of the spear” for Optiv Advisory Services.

• Architect solutions to ensure that the customer's risk transformation, IRM, and GRC requirements are met.

• Assist with development of risk transformation plans for customers which will enable them to execute upon strategies.

• Rationalize different security solutions against requirements, risk, and constraints.

• Oversee and direct the delivery of security strategy execution as part of a broader Enterprise or IS/IT Architecture which encompass People, Process and Technology components.

• Undertake Risk analysis methodologies/techniques and the interpretation/application of their output in the definition of Security Architectures.
• Able to deliver and lead other consultants in complex projects
• Able to present to large groups.  Speaks as an authority.
• Can handle difficult questions and consistently wins support from client audiences.
• Broad awareness of the security/ technology space as a whole.
• Contributor to industry groups and/or publications.

• Bachelor's degree or approximately 10-15 years of Security Consulting or demonstrable experience.

• Experience designing and/or implementing security solutions and risk management programs.

• Experience architecting and implementing RSA Archer.

• Experience architecting and implementing ServiceNow is desirable.

• A high-level knowledge of all key areas of GRC, IRM, Risk Management and Information Security Technology.

• Knowledgeable in \ Standards, Policies and Legislation, e.g. ISO27001, NIST CSF, PCI DSS, GDPR etc. in the development of security strategies.

• Strong understanding of security strategy, risk management and security operations.

• Demonstrable experience in “soft” consultancy skills (i.e., written and verbal communications, expectation management, on budget/on time task completion).

• Able to create information security documentation and convey complex information security topics in a simple effective manner.

• Experience writing Statements of Work (SOWs)

• Information Security and regulatory compliance consultancy experience.

• Cloud Security experience desirable.

• Desirable experience with FAIR, Octave, NIST 800-30r1 or other risk assessment methodologies.
• Appreciation of trends in IT security, IT risk management, and security architecture.
• Self-motivated individual who is keen to take ownership of allocated tasks and drive them to completion.
• Desirable experience within one or more of the following Security Architecture and/or Enterprise Architectural Frameworks (e.g. SABSA, TOGAF, O-ESA).
• Knowledgeable of multiple security concepts and methods such as data classification, privacy assessments, security policy creation, enterprise security strategies, architectures and governance.
• Willingness to travel to meet client needs
• Valid driver's license in the US and a valid passport required
• The successful candidate must hold or be willing to pursue related professional certifications such as the CISSP, CISM, and/or CISA.
• Strong interpersonal skills
• Strong written and presentation skills; ability to clearly communicate complex messages to a variety of audiences.
• Possess high standard of integrity and confidentiality.

#LI-BL1

Why you’ll love it here:

If you are seeking a culture that supports growth, fosters success and moves the industry forward, find your place at Optiv! As a market-leading provider of cyber security solutions, Optiv has the most comprehensive ecosystem of security products and partners to deliver unparalleled services. Our rich and successful history with our clients is based on trust, serving more than 12,000 clients of varying sizes and industries, including commercial, government and education. We have the proven expertise to plan, build, and run successful security programs across Risk Management, Cyber Digital Transformation, Threat Management, Security Operations – Managed Services and Identity and Data Management. Optiv remains committed to championing Diversity, Equality and Inclusion within our organization and throughout the industry.

With Optiv you can expect:

• Work/life balance. We offer “Recharge” a flexible, time-off program that encourages eligible employees to take the time they need to recharge
• Professional training resources, including tuition reimbursement
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remote/from home (where applicable)

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, status as an individual with a disability, veteran status, or any other basis protected by federal, state, or local law.