IT Risk and Cybersecurity Consultant - Financial Services

  • Full-time

Company Description

Sia Partners is a unique management consulting firm and a pioneer of Consulting 4.0

Through unparalleled industry expertise, we deliver superior value and tangible results for our clients. Our innovative approach has led us to welcome the disruption of AI, invest in our Data Science field, and develop consulting bots. Additionally, we provide our clients with a broad range of traditional management consulting services. Sia Partners is run by an international management team and organized as a partnership.

Sia Partners is a unique global management consulting firm with 1050 passionate consultants delivering superior value and tangible results to our clients across 21 industry sectors and service teams.

Job Description

The Cybersecurity and IT Risk and Controls Consultant performs Cyber and IT Risk assessments, makes recommendations and implements steps to combat and identify cyber threats and IT risks. The consultant will leverage IT tools, framework and appropriate methodologies to conduct these assignments.

The consultant will also help clients understand and quantify their risk exposures, evaluate strategy or program, and build/maintain risk models. Certain assignments will also consist of advising clients in order to build and implement IT Risks or Cybersecurity controls, assisting in writing documentation, or conducting testing.

Business Communication

  • Coordinates with technology and business groups to assess, implement, and monitor IT-related security risks/hazards.
  • Prepares assessments and cyber threat profiles of current events based on the sophisticated collection, research and analysis of classified and open source information.

Technical Expertise

  • Must be well versed in the techniques that actors utilize to attack an organization and understand how to pull information from large data sets and how to structure information for reuse.
  • Knowledge of collection and analysis methods as well as knowledge in multiple tools (e.g. Penetration Testing), mostly targeted to data correlation and technical areas.
  • Knowledge of IT Frameworks (COBIT, NIST…).
  • Good Understanding of Software and Database Architecture.
  • Previous Software Development / QA is a plus.
  • Advance excel skills (macros, vlookups, vlookups returning multiple values, pivot tables)
  • Ability to program is a plus.

Functional Knowledge

  • Interprets IT Risk business challenges, identifies trends and recommends best practices.

Business Knowledge

  • Able to articulate complex Cyber Threats to non-technical business leaders with internal stake holders at clients.
  • Ability to train IT security concepts.

Qualifications

  • 0 - 5 years’ experience in Information Technology, Security or Risk from an IT Audit or IT Risk consulting background (open to entry level candidates with strong internship experience).
  • Must have advance excel skills (macros, vlookups, vlookups returning multiple values, pivot tables)
  • Ability to program in VBA and Python is a plus
  • Bachelor’s Degree or high level of education. Ideally a BA/BS in Information Technology, Security, Cyber Intelligence or similar discipline.
  • Professional accreditations such as CISA or CISSP are a plus.
  • Limited to no travel.
  • Projects are based in NYC, JC and CT.
  • If interested in travel and opportunities, if a project comes up on can express interest in travel.

 

 

 

Additional Information

Please no calls, emails or additional contact for inquiry. Our HR team will be in contact with you if we need additional information or wish to schedule a phone or personal interview with you. 

EEO Guidelines

All your information will be kept confidential according to EEO guidelines.

Sia Partners is an equal opportunity employer. At Sia Partners, we are committed to treating all Applicants and Associates fairly based on their abilities, achievements, and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or any other classification protected by law.

Privacy Policy