Talent.com
Principal, Cyber Assurance
Principal, Cyber AssuranceControl Risks • Washington, DC, US
Principal, Cyber Assurance

Principal, Cyber Assurance

Control Risks • Washington, DC, US
30+ days ago
Job type
  • Full-time
  • Permanent
  • Quick Apply
Job description

This role may be based in NYC or Washington DC.

We are seeking a senior leader to drive the growth of Digital Risks in the United States, with a primary focus on cyber assurance, third-party risk management, and large-scale regulatory compliance audits. In this role, you will collaborate closely with our cyber threat intelligence, advisory, and response teams to expand our digital risk business. Your responsibility will include overseeing the assessment, and improving client cybersecurity programs, ensuring alignment with industry standards and regulatory requirements, and guiding clients through complex third-party audits.

Key Responsibilities

Cybersecurity Program Evaluation

  • Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks.
  • Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements.

Third-Party Risk Management Audits

  • Oversee large-scale third-party risk and compliance audits, ensuring alignment with industry-specific frameworks, regulatory standards, and contractual obligations.

    • Regulatory Compliance Audits

  • Oversee regulatory compliance audits to ensure clients meet required standards and regulations.
  • Advise clients on audit preparation and guide them through maintaining compliance while improving cybersecurity measures.
  • Ensure clients' compliance programs address both current and emerging regulatory requirements.

    • Penetration Testing & Vulnerability Management Support

  • Partner with the penetration testing team to incorporate findings into broader cyber assurance reviews.
  • Lead remediation efforts for high-risk vulnerabilities, aligning them with the client’s overall compliance and cybersecurity objectives.

    • Client Relationship & Business Development

  • Build and sustain relationships with key stakeholders, especially C-suite executives, positioning Digital Risks as a leader in cyber assurance and regulatory compliance.
  • Identify and capitalize on new business opportunities in cyber assurance, third-party risk assessments, and compliance audits.
  • Provide thought leadership on cyber assurance trends, regulatory updates, and best practices to enhance client relationships and grow the practice.
  • Advise clients on continuously improving their cybersecurity and compliance frameworks based on audit findings and risk assessments.

    • Practice Development & Team Leadership

  • Recruit, develop, and lead a high-performing team specializing in cyber assurance, third-party risk management, and regulatory compliance.
  • Foster a culture of continuous learning, ensuring the team stays ahead of emerging trends in cybersecurity and compliance.
  • Contribute to the creation of innovative services and solutions to meet clients' evolving needs in cyber assurance and compliance auditing.

    • Requirements

  • Candidates must be legally authorized to work in the US on a permanent basis without sponsorship.
  • Candidates must possess unrestricted US work authorization.

    • Experience & Knowledge :

  • 12+ years of experience in cybersecurity, specializing in cyber assurance, third-party risk management, and regulatory compliance audits.
  • Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001).
  • Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles.
  • In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for both commercial and government sectors.
  • Experience integrating penetration testing and vulnerability assessments into broader cyber assurance strategies.

    • Education & Certifications :

  • Bachelor's or master’s degree in information security, Computer Science, Engineering, or a related field.
  • Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing.

    • Skills :

  • Strong commercial acumen, with proven ability to generate new business in cyber assurance and regulatory compliance services.
  • Exceptional communication, presentation, and analytical skills with the ability to influence senior stakeholders and deliver impactful insights that improve cybersecurity resilience and regulatory compliance.

    • The base salary range for this position in Washington DC is $180,000-$205,000 per year. The base salary range for this position in New York City is $200,000-$215,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience.

    Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

    Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.

    Benefits

  • Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
  • Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
  • Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program.
  • As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.
    • Create a job alert for this search

    Principal Assurance • Washington, DC, US

    Related jobs
    Director of Cyber Analysis

    Director of Cyber Analysis

    Technomics • Arlington, VA, United States
    Full-time
    Technomics is a growing employee-owned, decision analytics company that specializes in cost and economic analysis to facilitate. We enable a wide range of clients across the Federal government, from...Show more
    Last updated: 30+ days ago • Promoted
    Principal, Cyber Assurance

    Principal, Cyber Assurance

    Control Risks • Washington, DC, United States
    Permanent
    This role may be based in NYC or Washington DC.We are seeking a senior leader to drive the growth of Digital Risks in the United States, with a primary focus on cyber assurance, third‑party risk ma...Show more
    Last updated: 6 hours ago • Promoted • New!
    Cyber Warfare Technician

    Cyber Warfare Technician

    U.S. Navy • Woodstock, Maryland, US
    Part-time
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.As a Cryptologic Technician, you are one of the worlds greatest problem-solvers. Were looking for people with sha...Show more
    Last updated: 2 hours ago • Promoted • New!
    Subject Matter Expert (SME) - Cybersecurity

    Subject Matter Expert (SME) - Cybersecurity

    Lafayette Group Inc. • Arlington, VA, United States
    Part-time
    Subject Matter Expert (SME) - Cybersecurity.Lafayette Group is seeking qualified and team-oriented individuals to work with federal government organizations in support of national cybersecurity pro...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Protect Analyst

    Cyber Security Protect Analyst

    TekSynap • Fort Belvoir, Virginia, USA
    Full-time
    Responsibilities & Qualifications.The Protect team serves as the Subscriber Cybersecurity Liaison and provides dedicated cybersecurity support. The following are required responsibilities for th...Show more
    Last updated: 12 days ago • Promoted
    Third-Party Risk Assurance Manager

    Third-Party Risk Assurance Manager

    Cotton & CO • Alexandria, VA, United States
    Full-time
    Third Party Risk Assurance Manager - (Remote, US).What to expect when you join the Sikich family.Team members at Sikich have a lot in common while also being part of a rich and varied group of cont...Show more
    Last updated: 10 days ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    eTelligent Group • Washington, DC, United States
    Full-time
    Over the past 15 years, eTel has delivered essential solutions for the federal government by securing and managing data, providing scalable identity access, modernizing legacy systems, and building...Show more
    Last updated: 17 days ago • Promoted
    Cybersecurity – Information System Security Officer (ISSO)

    Cybersecurity – Information System Security Officer (ISSO)

    Boeing • Howard County, Maryland, USA
    Full-time +1
    Cybersecurity Information System Security Officer (ISSO).The Boeing Company is currently seeking a.Cybersecurity Information System Security Officer (ISSO). Department of Defense (DoD) and Special...Show more
    Last updated: 1 day ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    Booz Allen Hamilton • Riverdale, MD, United States
    Full-time +1
    As a Cybersecurity Architect at Booz Allen, you'll support the program management of a suite of cybersecurity tools, deliver a Zero Trust Architecture roadmap, and develop an Enterprise Integration...Show more
    Last updated: 17 days ago • Promoted
    Senior Cyber Operations, Site Lead

    Senior Cyber Operations, Site Lead

    Huntington Ingalls Industries, Inc. • Howard County, Maryland, USA
    Full-time
    Employment Type : Full Time / Salaried / Exempt.Anticipated Salary Range : $110000.Security Clearance : TS / SCI with Poly. HIIs Mission Technologies division.Warfare Systems comprises cyber and mission IT; ele...Show more
    Last updated: 30+ days ago • Promoted
    Networking System Administrator (Linux) CLEARANCE and POLYGRAPH REQUIRED (copy)

    Networking System Administrator (Linux) CLEARANCE and POLYGRAPH REQUIRED (copy)

    Constellation Technologies • Howard County, Maryland, USA
    Full-time
    Security Technical Implementation Guide (STIG) requirements in Linux OS.Due to federal contract requirements United States citizenship and an active TS / SCI security clearance and polygraph are requ...Show more
    Last updated: 19 days ago • Promoted
    16Yrs Information Assurance and Security Specialist

    16Yrs Information Assurance and Security Specialist

    AHU Technologies, Inc. • Washington, DC, United States
    Permanent
    Role : Information Assurance and Security Specialist.Identify network problems, and recommend improvements to ensure optional performance. .Ability to monitor and analyze data traffic patterns withi...Show more
    Last updated: 4 days ago • Promoted
    Remote Audit Senior Manager (Digital Assets / Crypto / Exchange / Treasury / Blockchain)

    Remote Audit Senior Manager (Digital Assets / Crypto / Exchange / Treasury / Blockchain)

    BDO USA • Washington, DC, US
    Remote
    Full-time
    The Assurance Senior Manager is responsible for developing suggestions to improve client internal controls and accounting procedures as well as advising the client on various economic and regulator...Show more
    Last updated: 30+ days ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    Cybervance • Washington, DC, United States
    Full-time
    Position Title : Cybersecurity Architect.Location : On Site - Washington, D.Clearance Required : Public Trust.Cybervance is a rapidly growing information security and information technology company in...Show more
    Last updated: 17 days ago • Promoted
    Senior Cybersecurity Architect

    Senior Cybersecurity Architect

    Special Aerospace Security Services, Inc. • Washington, DC, United States
    Full-time
    The Senior Cybersecurity Architect will lead enterprise-level cybersecurity strategy, architecture design, and compliance for DCIO(IE & SAP-IT) systems. This role ensures alignment with DoD directiv...Show more
    Last updated: 17 days ago • Promoted
    Cybersecurity Lead Manager

    Cybersecurity Lead Manager

    ASRC Federal Holding Company • Alexandria, VA, United States
    Full-time
    ASRC Federal is a leading government contractor furthering missions in space, public health and defense.As an Alaska Native owned corporation, our work helps secure an enduring future for our share...Show more
    Last updated: 17 days ago • Promoted
    Director - Cybersecurity

    Director - Cybersecurity

    Five Guys • Alexandria, VA, United States
    Full-time
    The Director - Cybersecurity is responsible for leading Five Guys cybersecurity strategy, governance, and operations to protect critical assets, data, and infrastructure. This executive-level role o...Show more
    Last updated: 17 days ago • Promoted
    Cybersecurity Lead

    Cybersecurity Lead

    clearAvenue, LLC • Columbia, MD, United States
    Full-time +1
    Analyze IT requirements and provide objective advice of information security requirements.Analyst, design, and implement efficient information security technical and organizational measures.Manage ...Show more
    Last updated: 30+ days ago • Promoted