Privacy, Risk, and AI Consultant

What You'll Do

• The Consultant is expected to leverage their technical and business experience with the following areas of responsibility: 
• Develop engagement methodologies to enhance our client privacy offerings 
• Serve as a Privacy, Risk, and AI Thought Leader on engagements including assessment plan preparation, review of technical plans, documentation and evidence, evaluation of procedures, and client interviews.   
• Support and guide information security, privacy, and risk discussions with technical and non-technical groups 
• Identify enterprise information security, privacy and compliance related problems and challenges; research and develop technical solutions to rectify them 
• Perform information risk, security and related compliance assessments, including testing of related controls 
• Review AI Risk and Governance programs and provide recommendations for strengthening AI security 
• Develop and operationalize enterprise information security and privacy programs and related components 
• Prepare and review advisory or assessment findings and recommendations reports 
• Assess cyber-related policy, procedures, legislation, and implementation directives 
• Assess and remediate compliance with industry regulations and frameworks across multiple industries that are relevant to cybersecurity (e.g. NIST CSF, NIST Privacy, CIS, CCPA, GDPR) 
• Continuous professional development in maintaining industry specific certifications to maintain a strong depth of knowledge in the practice area.  

What You’ll Bring

• At least 3 years working experience in cyber security and privacy 
• Consulting experience or security experience in an industry segment (finance, healthcare, energy, technology, etc.)  
• Knowledge and awareness of the latest information risk, security, privacy, and AI innovations, trends, challenges and solutions 
• Exposure to industry acclaimed information governance, risk and security standards/frameworks and professional practices (NIST, ISO, CIS, etc.) 
• Knowledge of the typical enterprise risk and security operational practices 
• Knowledge of information security related solutions, tools and utilities 
• Bachelor’s degree in Business Administration, Computer Science, Information Systems, Engineering or related field, or equivalent combination of education and experience 
• Strong analytical and problem-solving abilities 
• Strong oral, written, and presentation skills 
• Ability to work independently and time-manage 

Bonus Points

• CIPM, CIPP (or other privacy-related certification) 
• CISM, CCSK, CIPP, CISA, CGEIT, or CRISC certification(s) 
• Cyber Incident Response Experience 
• AWS, Azure, Google Cloud Platform certification(s) and experience 
• AI Risk and Governance experience