Cyber Compliance - Data Protection Associate

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.

To address the critical needs of our clients, RSM US LLP has established the Cybersecurity & Data protection Services group, consisting of over 300 professionals dedicated to cybersecurity. Our experienced consultants, located nationwide, help clients prevent, detect, and respond to security threats that may impact their critical systems and data. We serve a diverse range of industries and are relied upon for expertise in security testing, architecture, governance, compliance, and digital forensics.

We are seeking an Associate to join our Cyber practice, focusing on multinational commercial entities with an emphasis on cybersecurity frameworks and data protection requirements. The Associate of CyberCompliance will participate in and in select cases lead the delivery of various cybersecurity services while understanding the specific risks related to cyber regulatory expectations that impact multinational organizations. This role involves assisting organizations in establishing effective data protection programs to safeguard critical assets.

Candidates should possess a range of skills, including performing and overseeing cybersecurity governance assessments (e.g., NIST CSF, ISO, FedRAMP, FISMA, CMMC, MARS-E), vulnerability assessments, penetration testing, and incident response. Additionally, experience in managing teams that deliver technical deployments of SIEM, DLP, and Identity Management solutions is highly desirable.

• Lead the delivery and management of various cybersecurity engagements and team members, ensuring high-quality work products that meet client expectations.
• Communicate effectively with client management and project leaders to build strong client relationships.
• Cultivate deep client relationships to exceed satisfaction levels.
• Participate in the delivery of cybersecurity governance and compliance assessments against various regulatory and industry standards, including FISMA, FedRAMP, CMMC, MARS-E, NYDFS, HIPAA/HITECH, and NERC/CIP.
• Assist clients in designing and implementing cybersecurity remediation strategies to enhance the overall maturity of their cybersecurity programs by identifying suitable technologies, policies, and organizational structures.
• Identify and clearly articulate findings to senior management and clients, both in writing and verbally.
• Help pinpoint improvement opportunities for assigned clients.

• Technical expertise and the ability to discuss topics in one or more of the following areas: network and IT infrastructure, application and database design, IT governance and risk management, third-party management, incident response, and knowledge of standard network and IT security components.
• Familiarity with key cybersecurity compliance standards and regulations, including but not limited to ISO, FedRAMP, CMMC, NIST CSF, and GLBA, etc.
• Strong interpersonal skills with a proven track record in a professional services firm, large consultancy, or similar environment.
• Demonstrated ability to collaborate effectively, especially with cross-functional teams.

Preferred qualifications:

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field from an accredited college or university.
• 1-3 years of relevant experience in cybersecurity governance and compliance consulting, or equivalent academic experience with an advanced degree.
• Certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified CMMC Professional (CCP), and Certified CMMC Assessor (CCA).

At RSM, we offer a competitive benefits and compensation package for all our people.  We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients.  Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits   https://rsmus.com/careers/el-salvador.html. 

RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Salvadoran Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation.  

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please send us an email at [email protected].