Senior Security Consultant

Summary

Join GuidePoint Security as a Senior Security Consultant and deliver executive-level cybersecurity advisory services, aligning security programs with organizational objectives. This role blends strategic leadership, practical experience, and mentorship to help clients transform their programs and coach CISOs. You will shape and deliver holistic security transformation programs and contribute to the evolution of GuidePoint’s Executive Advisory Services. Lead engagements across GRC service areas, design and implement cybersecurity risk management programs, and develop executive-level risk reporting. Build strong client relationships, provide cross-functional leadership, and support pre-sales activities. Actively contribute to thought leadership and represent GuidePoint Security in industry forums.

Requirements

• Proven experience in executive advisory roles, delivering cybersecurity guidance at the C-Level and Board level
• 10+ years of experience in GRC consulting, delivering outcomes across diverse industries, including financial services, healthcare, manufacturing, retail, and SaaS providers
• Expertise in designing, leading, and optimizing cybersecurity programs, including alignment with frameworks such as NIST CSF, ISO 27001, CIS Controls, etc
• Strong command of risk analysis techniques, including threat modeling (e.g., STRIDE, MITRE ATT&CK), quantitative/qualitative risk analysis, and enterprise risk reporting
• Experience integrating security strategy with Enterprise Architecture and Security Architecture principles
• Exceptional communication skills with a demonstrated ability to simplify complex security concepts for business and board audiences
• Track record of successfully mentoring and developing high-performing security leaders and CISOs
• Demonstrated experience delivering cyber due diligence and security program alignment during mergers and acquisitions (M&A)
• A passion for service excellence, innovation, and thought leadership

Responsibilities

• Lead and deliver strategic cybersecurity advisory services to senior executives, including CIOs, CISOs, CFOs, CEOs, and Boards of Directors
• Serve as a trusted Virtual CISO for clients, overseeing program development, strategic planning, risk reduction initiatives, and board communications
• Execute executive briefings and present cybersecurity program strategies in business-aligned language to drive understanding and sponsorship at the executive and board levels
• Provide coaching and mentorship to CISOs and emerging security leaders, aligning program growth with organizational maturity and executive expectations
• Lead engagements across GRC service areas such as enterprise risk assessments, maturity program reviews, M&A cybersecurity due diligence, and transformation initiatives
• Design and implement cybersecurity risk management programs integrated with Enterprise Risk Management (ERM), leveraging both qualitative and quantitative methodologies
• Develop and operationalize board- and executive-level risk reporting, metrics, and KRIs to support informed decision-making and governance
• Guide development of policies, procedures, data governance and protection strategies—including the implementation of privacy and data classification controls
• Contribute to service innovation and strategic offering development for Executive Advisory and Virtual CISO services
• Build and maintain strong, trusted relationships with client executives and business stakeholders
• Provide cross-functional leadership, collaborating with other GuidePoint practices on large-scale transformation programs
• Support pre-sales activities and contribute to proposal development and service scoping for Executive Advisory and Governance services
• Actively publish thought leadership, present at conferences, and represent GuidePoint Security in industry forums

Preferred Qualifications

• Former CISO or senior security leadership experience in a global enterprise or consulting capacity is highly preferred
• Industry-recognized certifications appreciated: CISSP, CISM, CISA, CRISC, CGEIT, CBCP, GIAC, etc
• Experience speaking at industry conferences or publishing thought leadership is a strong plus

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option