We are working with a Federal Government client seeking a Risk Management Consultant to join their team for a 1-year contract. The consultant will be responsible for developing and implementing a Cyber Security Strategy, managing governance frameworks, and providing strategic reports on Cyber Security and Risk Management.

Roles and Responsibilities

• Provide strategic input to executive security committees by offering feedback on key topics and presenting Cyber Security program updates.
• Develop and maintain a Cyber Security dashboard for senior executives to track compliance, risk, and performance across business units and systems.
• Update and implement the Cyber Security strategy, including its roadmap, risk management approach, and governance framework.
• Contribute Cyber Security program input to accountability and management action frameworks.
• Collaborate with business and technical teams to gather, organize, and document requirements to enhance Cyber Security processes and service delivery.
• Lead and support teams in shaping the Cyber Security strategy, including capabilities, frameworks, and operational processes.

Qualifications and Skills

• Secret Security Clearance.
• Minimum of 5 years of experience developing cyber security strategies, programs, plans, and roadmaps. 
• Minimum of 5 years of experience providing cyber security advice to senior executives.
• Minimum of 5 years of experience managing cyber security risks and mitigations.

Education

• Valid college diploma or a university degree from a recognized post- secondary institution with acceptable specialization in computer science, information technology, and/or cyber security.
• Have 1 or more of the following designations: 
  • Certified Information Systems Security Professional (CISSP)
  • Information Systems Security Engineering Professional (ISSEP)
  • Information Systems Security Architecture Professional (ISSAP)
  • Certified Information Security Manager (CISM)
  • Certification in Risk and Information Systems Control (CRISC)
  • Control Objectives for Information Technologies COBIT 5 Assessor
  • PCI Qualified Security Assessor (QSA)
  • Sarbanes- Oxley (SOX) professional
  • Certified Cloud Security Professional (CCSP)
  • Information Systems Security Management Professional (ISSMP)
  • Certified Secure Software Lifecycle Professional (CSSLP)
  • Certified Ethical Hacker (CEH)
  • Certified SCADA Security Analyst (CSSA)
  • Supervisory Control and Data Acquisition (SCADA) Security Architect
  • Global Information Assurance Certification (GIAC) Security Essentials (GSEC)