Cyber Security and Privacy Senior Associate – ServiceNow

Essential Duties and Responsibilities

  • Participating in the solution development process and ensuring that customer requests and needs are represented within the product
  • Designing and deployment of enterprise software solutions, including on-site implementations and cloud-based capabilities
  • Assisting with performing technical and competitive analysis of ServiceNow GRC, SecOps, Third Party and IT Asset Management solutions, including performance, debugging and other operational metrics.
  • Familiarity with risk standards and models is preferred.
  • Familiarity with Governance, Risk and Compliance platforms is preferred, especially ServiceNow
  • Familiarity with ServiceNow Performance Analytics is a plus
  • Familiarity with IT Asset Management solutions is a plus
  • Familiarity with risk reporting and dashboard solutions, including Business Intelligence platforms, is a plus
  • Ability to communicate difficult subject matter in a clear and concise fashion is important.
  • Ability to work with different delivery teams to support technology capabilities as part of larger projects is required.
  • Ability to consider non-traditional approaches to solve traditional security challenges is important.
  • Experience in offshore team- and capability-development is preferred.
  • Communicate (verbally and in writing) externally with clients and internally with all levels of the organization to successfully accomplish objectives portraying knowledge and confidence.
  • Motivate others to perform at maximum efficiency without sacrificing quality of the services delivered.
  • Maintain a good working relationship with clients and work effectively with client management and staff at all levels to gather information and perform services.
  • Work closely with Grant Thornton managers and partners to promptly identify and resolve client problems or issues.
  • Other duties as assigned

     Qualifications:

  • Bachelor’s degree in Computer Science, Information Systems, or related field.
  • 1+ years of related work experience in a similar consulting practice or function, servicing cross-industry clients at a national level.
  • Must have minimally 1 + years of related work experience with GRC platforms
  •  Must have, or be willing and able to obtain, one or more of the following certifications: CISSP
  • Demonstrated working knowledge of various standards and guidelines that are applicable to security practices such as ISO, NIST, COBIT and others.
  • Expert-level proficiency in Microsoft Office Suite, specifically Microsoft Word and Microsoft Power Point.
  • Must have excellent oral and written communication skills
  • Ability to think strategically
  • Ability to understand regulatory impacts to client strategies
  • Ability to travel on short notice and work additional hours as necessary.

Privacy and Data Protection Senior Associate

Essential Duties and Responsibilities

  • Adhere to the highest degree of professional standards and strict client confidentiality.
  • Ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
  • Ability to communicate in an organized and knowledgeable manner in written and verbal means – including delivering clear requests for information, developing responses to client requests, and communicating conflicts and risks.
  • Deep understanding of global privacy and data protection regulations, such as EU’s GDPR and US laws such as CCPA, CPRA, CDPA, CPA, HIPAA, GLBA.
  • Apply current knowledge of privacy and data protection trends and to issues and other opportunities for improvement.
  • Assist clients in planning and executing remediation plans identified in assessment activities.
  • Proactively interact with key client management to gather information, resolve problems and make recommendations for improvements.
  • Collaborate with team members at all levels in the development and marketing of the privacy service offering.
  • Develop high quality deliverables through collaboration with clients and team members to address needs and demonstrate an understanding of clients’ business.
  • Additional duties as assigned.

Qualifications 

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related field is required.  A Masters or JD degree is preferred.
  • 3+ years of related work experience in a similar consulting practice or function, servicing cross- industry clients at a national level.
  • Certification(s) Preferred: Obtained or demonstrates an active pursuit of one or more of the following certifications: Certified Information Privacy Professional (CIPP), Certified Information Privacy Technologist (CIPT), Information Systems Security Professional (CISSP), or other related certifications.
  • Experience working with leading privacy regulations to perform privacy assessments and support privacy program implementations.
  • Experience preparing reports and other deliverables that contain strategy, project, or technical analysis and findings in connection with consulting engagements and communicating those results to the team and client.
  • Knowledge of privacy technology solutions and experience implementing and sustaining tools such as OneTrust, WireWheel, Securiti.ai, BigID is a plus.
  • Experience in project management and the ability to clearly communicate privacy and data protection issues verbally on both a formal and informal basis to all levels of client staff.
  • Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
  • Demonstrates creative thinking and problem-solving skills, and advanced knowledge of MS Office Word, Excel, Visio, and PowerPoint.
  • Ability to work additional hours as needed and travel on a regular basis to clients as required.