Jobs
>
Orlando

    Director of Security Compliance - Orlando, United States - Burns & McDonnell

    Burns & McDonnell
    Burns & McDonnell Orlando, United States

    6 days ago

    Default job background
    Full time
    Description

    Description

    1898 & Co. is looking for its next leader within the Security & Risk Consulting group focused on helping our clients secure their operational technology and assets. The Director of Security Compliance within the Industrial Cybersecurity Consulting group will lead the group of Governance and Compliance Consultants that provide consulting service offerings from 1898 & Co.'s Security & Risk Consulting group, reporting to the Security & Risk, Consulting Business Line Leader.

    1898 & Co. is a global business, technology and security consultancy serving critical infrastructure industries. We partner with clients to plan, secure, and optimize their business. As part of Burns & McDonnell and our 120 years of industry experience, we understand the complexity of the asset-intensive business model, the trends impacting the industry, and the need to ground big ideas in operational realities.

    We have a group specifically focused on industrial cybersecurity. When it comes to industrial cybersecurity, critical infrastructure industries face unprecedented challenges. The risk of cyber sabotage is on the rise. And evolving technologies create complexities that are increasingly difficult to manage. Our team is among the small pool of professionals who can operate at the intersection of critical infrastructure and cybersecurity.

    We're looking for someone ready to take the lead of the Security Compliance team with an entrepreneurial spirit and to implement our core values into their work. 1898 & Co. has the feel of a start-up, with the support of Burns & McDonnell's vast resources. It's what makes us unselfish collaborators. We proactively walk the talk to create bigger opportunities through sharing, communicating, and candidness. We are energy-givers who maintain a broader view of success, prioritizing others' needs and goals in addition to our own.

    1898 & Co.'s Business Lines facilitate a strategic approach to selling services, developing staff, and maintaining client relationships. The Director of Security Compliance primary responsibility is to help lead the Security Compliance Delivery team to meet the near-term goals and long-term vision for the Business Line that supports the growth of 1898 & Co. The Director of Security Compliance displays grit in their leadership role and the work they deliver. They are confident and willing to take it to the next level.

    The Director of Security Compliance will be required to lead a team of Governance and Compliance consultants that work with numerous entities within a variety of industries, including energy, utilities, manufacturing, and government.

    What You'll Do:

    As a Director of Security Compliance, you will be responsible for and manage the Security Compliance group within the Business Line of Industrial Cybersecurity Consulting service offerings. You'll work with the Consulting Business Line Leader to support overall business planning, while being responsible for the Security Compliance group's Profit and Loss. You'll lead the group of Security Compliance Consultants responsible for project execution, and team leadership. Key responsibilities will include:

    Support the Consulting Business Line to help create, develop, manage, and communicate the strategic direction of the Consulting Business Line. In collaboration with the Business Line Leader, you'll help set financial targets for the Security Compliance team, such as sales, revenue, profitability, and chargeability, as well as budgets for overhead expenses, such as marketing trips, conferences, software, certifications, etc. You'll help prepare and manage a business plan for the strategic growth of the Consulting Business Line, including expansion of current and new service offerings, marketing activities, client retention and acquisition, and staff growth plan.

    Support a team of Governance and Compliance consultants to facilitate timely, quality, and profitable execution of projects within the Business Line and serve as quality control leader for deliverables. You're accountable for key financial performance metrics within the Business Line and the execution of projects.

    Serve as a Offering Leader on all aspects of project execution, including scope, schedule, and budget, and ensure quality control of deliverables. You'll analyze and communicate project status, risks, schedule, and costs to all internal and external stakeholders. You'll lead multi-discipline teams of engineers and analysts. Your communication and planning skills are vital to keeping everyone on the same page with personnel needs to department management.

    Mentor, train, and support the career development of Security Compliance consultants within the business line.

    Specific responsibilities include:

  • Overall management of Security Compliance Consulting Team
  • Develop and lead a global Security Compliance Strategy supporting the successful delivery of security outcomes across Security Risk & Consulting Delivery.
  • Serve as the Business Owner of Security Compliance processes, tools and governance, including documentation of all processes (sales engagement and delivery), the training of Governance and Compliance team and assessment of new processes and tools when required.
  • Create a repository for all delivery documentation; keeping the repository updated
  • Align Security Compliance team with 1898 CX Principals
  • Review utilization and assignment of projects -ensuring proper utilization for team members
  • Monitor and proactively address project risks
  • Manages Governance and Compliance projects for industrial control systems (ICS), ensuring timely, on budget completion and adherence to established methodologies and guidelines.
  • Advise on the pursuit and proposal process for client engagements, contributing technical expertise to craft compelling proposals that showcase value of our Security Compliance Offerings.
  • Lead the estimation and resource allocation process for Governance and Compliance engagements, providing insights into project requirements, complexities, and potential challenges, ensuring efficient project planning and execution.
  • Achieve client-specific cybersecurity goals by identifying compliance variances in our critical infrastructure clients and recommending appropriate remediation measures.
  • Develop comprehensive Governance and Compliance reports that clearly outline findings, risks, and recommendations for improving the security posture of industrial control systems.
  • Advise clients on best practices for securing their industrial networks and control systems, including network segmentation, authentication, and encryption.
  • Assign tasks and responsibilities to junior Governance and Compliance Consultants, providing guidance and mentorship to develop their skills and expertise in ICS security.
  • Decide on the scope and objectives of Governance and Compliance work, based on client requirements and industry-specific regulations and standards.
  • Oversee the continuous improvement of internal processes and procedures, promoting a culture of excellence and innovation within the Security Compliance Team.
  • Approve and review Governance and Compliance methodologies and tools, ensuring their suitability for assessing the security posture of various ICS architectures and technologies.
  • Think "outside the box" to develop specialized techniques to gather, evaluate and present compliance information to clients that goes beyond the typical "check box" exercises of compliance.
  • Initiate client communication, establishing a collaborative relationship and maintaining transparency throughout the delivery process.
  • Perform and manage performance of compliance maturity reviews based on an existing frameworks, including, but not limited to: NERC CIP, TSA, CMMC, AWIA, ISO27001, NIST CSF, NIST , and formulate a program to close the gaps.
  • Delegate responsibilities to team members, ensuring a balanced workload and optimal use of resources during engagements.
  • Determine training needs for the team and participates in developing ICS cybersecurity training materials and programs, by level, by role and by specific consultant.
  • Supervise the assessment of emerging cybersecurity governance and compliance standards specific to our critical infrastructure clients,
  • incorporating this knowledge into methodologies, strategies, offerings and training of consultants testing.
  • Monitor and ensure CSAT responses on Security Compliance Projects and ensure all engagements are at or above satisfactory for all projects
  • Enforce strict adherence to legal and ethical guidelines during Security Compliance engagements, ensuring that all activities comply with applicable laws, regulations, and industry standards.
  • Collaborate with other cybersecurity professionals, staying current on industry trends and advancements in ICS security, and contributing to the broader knowledge base of the organization.
  • Conduct quarterly reviews and provide feedback to Security Compliance team members on progress
  • Develop and maintain relationships with internal clients (Offering Leaders) to ensure escalation paths are clearly defined
  • Develop, manage, and update all Security Compliance sales documentation – required for sales, internal training, internal reference, website content, etc.
  • Other duties as assigned

    • Qualifications

  • Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or a related field from an accredited program is required.
  • Applicable years of experience may be substituted for the degree requirement.
  • Minimum 13 years of professional experience required. 10 years of experience in cybersecurity, with at least 5 years specifically in Governance, Risk and Compliance is preferred.
  • 5 years Consulting Management experience is preferred
  • Industry-recognized certifications to be considered, such as: CRISC; CISM (CISSP); Cobit; SABSA Foundation; ISO27001 (ISMS); IEC52443; ITIL / ISO20000; Compliance Officer (IT, ICS); BCM (ISO22301); Agile Foundation
  • Proven leadership experience.
  • Excellent analytical, problem-solving, and communication skills.
  • Ability to work independently and collaboratively within a team environment.
  • Strong attention to detail, facilitation, team building, and collaboration skills

    • EEO/Minorities/Females/Disabled/Veterans

    Job Consulting

    Primary Location US-MO-Kansas City

    Other Locations US-VA-Richmond, US-AZ-Phoenix, US-DC-Washington, US-TX-Houston, US-FL-Orlando, US-MD-Baltimore, US-TX-Austin, US-VA-Norfolk, US-GA-Atlanta, US-TX-Dallas, US-IL-Chicago, US-SC-Greenville

    Schedule: Full-time

    Travel: Yes, 25 % of the Time

    About 1898 & Co. 1898 & Co. is a business, technology and security solutions consultancy where experience and foresight come together to unlock lasting advancements. We innovate today to fuel our clients' future growth, catalyzing insights that drive smarter decisions, improve performance and maximize value. As part of Burns & McDonnell, we draw on more than 120 years of deep and broad experience in complex industries as we envision and enable the future for our clients.

    Burns & McDonnell is an Equal Opportunity Employer Minorities/Females/Disabled/Veterans

    Req ID: 241530

    Job Hire Type Experienced #LI-MG #E98 N/A

  • TrovaSearch

    Security Compliance Analyst

    1 week ago

    TrovaSearch Orlando, United States

    IT SECURITY COMPLIANCE ANALYST · The Security Compliance Analyst works in support of IT Security compliance requirements and company risk tolerance. This role ensures that adequate and effective security processes, controls, and lifecycles are followed and aligned to deliver com ...

  • Universal Orlando

    Sr Engineer, IT Compliance and Security

    4 days ago

    Universal Orlando Orlando, United States

    Job Description · Universal Orlando Resort believes in-person collaboration is key to our success. Many of our Team Members work in a hybrid capacity, contributing from the workplace a minimum of three days per week. Some remote opportunities are available within specific departm ...

  • Universal Orlando

    Sr Engineer, IT Compliance and Security

    6 days ago

    Universal Orlando Orlando, United States

    Job Description & Requirements · // FOR DATA ORGANIZATION // · Below code block contains - Job Description & Apply/Refer & Share · Job Description & Requirements · Universal Orlando Resort believes in-person collaboration is key to our success. Many of our Team Members work in ...

  • Universal Orlando

    Sr Engineer, IT Compliance and Security

    4 days ago

    Universal Orlando Orlando, United States

    Universal Orlando Resort believes in-person collaboration is key to our success. Many of our Team Members work in a hybrid capacity, contributing from the workplace a minimum of three days per week. Some remote opportunities are available within specific departments. There are al ...

  • Hilton Grand Vacations

    Lead Analyst IT Compliance

    4 days ago

    Hilton Grand Vacations Orlando, United States

    **WORK FOR A WINNING TEAM THAT NOW OFFERS BENEFITS FROM DAY ONE, PLUS DAILY PAY** · At Hilton Grand Vacations, you will become a part of a culture that encourages and motivates you toward achieving your goals. · **Here's why you will love it here**: · - Recognition Programs and R ...

  • Extended Stay America Orlando

    Night Laundry

    4 days ago

    Extended Stay America Orlando Orlando, United States

    POSITION PURPOSE AND SUMMARY · The Night Guest Laundry Attendant ("NGLA") position must demonstrate and promote a strong commitment to providing the best possible experience for our guests. The NGLA is responsible for assisting guests overnight, including checking in and checking ...

  • Council For Logistics Research Inc

    Cyber Security Analyst

    1 week ago

    Council For Logistics Research Inc Orlando, United States

    **Cybersecurity Analyst** · **Council for Logistics Research, Inc.** · **Benefits Offered: Medical, Life Insurance, 401k, Dental** · **Employment Type Full-Time** · **Location: Orlando, FL / Remote Authorized** · **Supervises: No** · **Must be a US Citizen and have a current Secr ...

  • Lockheed Martin

    Classified Cyber Security Stf

    1 week ago

    Lockheed Martin Orlando, United States

    **Job ID**: 663909BR · **Date posted**: Apr. 01, 2024 · **Program**: LRASM · Responsibilities include, but are not limited to: · - Oversee day-to-day information system security operations including assisting the ISSM on all technical security matters. · - Carry out technical adm ...

  • Marriott Vacations Worldwide

    Corporate Counsel

    1 week ago

    Marriott Vacations Worldwide Orlando, United States

    **Business Title**: Corporate Counsel - Litigation, Compliance, & Privacy · **Leadership Role**:Manager of Others · **Position Summary** · The attorney in this position will work in the Law Department's Litigation, Compliance, and Privacy Group reporting to the Senior Vice Presid ...

  • COLSA

    Information System Security Officer

    1 week ago

    COLSA Orlando, United States

    **General Summary**: · Performs system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings. · **Principal Duties and Responsibilities (*Essential Functions)**: · - Monitors the network and supporting systems ...

  • Conti Federal Services

    Quality Control Manager

    5 days ago

    Conti Federal Services Orlando, United States

    **This position does not require relocation, however, it requires rotational travel for a minimum of 3 weeks at a time, with one weekend home (typical).** · **Project locations may vary based on project awards and timelines.** · Conti Federal Services is a leading global construc ...

  • Omni Hotels & Resorts

    Overnight Loss Prevention Officer Ft

    1 week ago

    Omni Hotels & Resorts Orlando, United States

    **Location**: · **Orlando Resort at Championsgate** · The Omni Orlando Resort at ChampionsGate is surrounded by 36 holes of championship Orlando golf and 15 acres of recreation, this four-diamond resort is one of the nation's premier golf, meeting and leisure retreats. In additio ...

  • Disney Experiences

    Manager Software Engineering

    2 days ago

    Disney Experiences Orlando, United States

    "We Power the Magic" That's our motto at Disney Parks, Experiences and Products Technology & Digital. Our team creates world-class immersive digital experiences for the Company's premier vacation brands including Disney's Parks & Resorts worldwide, Disney Cruise Line, Aulani, A D ...

  • Soar Technology

    Proposal Manager

    1 day ago

    Soar Technology Orlando, United States

    **About Us** · At SoarTech, our focus is in the development of artificial intelligence (AI) that reasons like humans do, to automate complex tasks, simplify human-machine interactions, or model human behaviors. Our philosophy is three-fold: to be an augmentation to, not a replace ...

  • CAPCO

    Analyst - Compliance and Operations

    2 days ago

    CAPCO Orlando, United States

    **About the team**: · **About the Job**: · The Analyst will engage in key activities such as compliance and operations monitoring, governance, oversight, and regulatory reporting, working closely with the compliance and internal control teams. This role is vital for ensuring that ...

  • Northwestern Mutual- Windermere, FL

    Director of Investments

    1 week ago

    Northwestern Mutual- Windermere, FL Orlando, United States

    Overview: · The responsibilities of the Director of Investments are to build out and be an advocate for efficient operational processes for the firm. They are responsible for partnering with the Diverse Wealth Partners and home office to ensure processes are compliant. They overs ...

  • Brambles Group

    Identity & Access Management Operations Lead

    2 days ago

    Brambles Group Orlando, United States

    CHEP helps move more goods to more people, in more places than any other organization on earth via our 300 million pallets, crates and containers. We employ 11,000 people and operate in more than 55 countries. Through our pioneering and sustainable share-and-reuse business model, ...

  • Sam's Club

    Personal Shopper Lead

    2 days ago

    Sam's Club Orlando, United States

    **Position Summary...** · **What you'll do...** · Assists management with the supervision of associates in assigned area of responsibility by assigning duties to associates; communicating goals and · feedback; training associates on processes and procedures; providing direction a ...

  • Tryfacta

    Autotransfusionist

    2 days ago

    Tryfacta Orlando, United States

    **Working Schedule**:7 AM to 03:30 PM (Monday - Friday) · **Preferred shift, not mandatory**:On-call status for 24 hours a day and seven days a week including all Federal Holidays and be within 30 minutes of the facility to support these emergent cases. · **Summary**: · The Certi ...

  • Conti Federal Services

    Regional Quality Control Manager

    2 days ago

    Conti Federal Services Orlando, United States

    **This position does not require relocation, however, it requires temporary travel for a maximum of 3 weeks at a time.** · Conti Federal Services is a leading global construction and engineering company that has delivered some of the most demanding projects for the U.S. federal g ...