Job Summary:

The Cyber Security and Compliance Consultant is responsible to participate and assist in compliance, security and technology consulting related engagements, including, IT Controls, IT Due-Diligence, IT Vendor Management, assessing business environments based on security frameworks such as PCI, NIST, ISO, and SOX, at the direction of the compliance and security engagement team leads. This role will interact with client personnel, thus good communication skills and a strong presence are needed.

Job Duties:

• Works with internal teams to directly engage client projects and consults around compliance and security issue, needs, remediation and make recommendations for resolution
• Drafts reports or presentations to client showing the updates needed to ensure their systems are operating for compliance
• Works with team on creating initial project plans for client, participating in planning sessions and attending meetings and testing for client projects
• Identifies and prioritizes risks and assesses the impact and likeliness of occurrence
• Participates in the review, validation, observation, and documentation of internal controls based on frameworks such as Payment Card Industry (PCI); National Institute of Standards and Technology (NIST); International Organization for Standardization (ISO) and Sarbanes-Oxley Act (SOX) IT standards
• Assists in evaluation of observations and providing possible solutions for and courses of action and to achieve best results based on the client business needs
• Prepares reports for client, highlighting work performed, issues identified and possible solutions/ recommendations
• Coordinates with other BDO practices in relation to technical issues and other due diligence project components in conjunction with the engagement lead
• Travels up to 30% of the time as necessary
• Other duties as required

Supervisory Responsibilities:

• N/A

Qualifications, Knowledge, Skills and Abilities:

Education:

• High school diploma or GED, required
• Bachelor’s degree with a focus in Computer Science, Information Security, Accounting, or Finance, preferred

Experience:

• One (1) or more years’ experience working with any sort of compliance framework, required
• One (1) year of prior experience in management consulting, technology advisory, or technology project management, preferred
• Prior experience working within a national consulting organization or professional services, preferred

Software:

• Proficient in the use of Microsoft Office Suite, required
• Experience with Google Suite, preferred

Other Knowledge, Skills & Abilities:

• Excellent verbal and written communication skills
• Ability to identify issues and anomalies through review of supporting information
• Solid organizational skills, especially ability to meet project deadlines with a focus on details
• Ability to successfully multi-task while working independently or within a group environment
• Ability to work in a deadline-driven environment and contribute to multiple projects simultaneously
• Ability to participate in a team environment on engagements
• Ability to interact effectively with people at all organizational levels of the client and BDO