Healthcare Cyber Security Principal

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM.

RSM US LLP, the First Choice Advisor to the Middle Market seeks a Security & Privacy Risk Consulting (SPRC) Principal (owner) to join our Risk Consulting Services, SPRC Practice. The SPRC owner will utilize their technical expertise in cybersecurity risk management, general risk advisory, leadership skills, and service mindset, focusing on clients in the healthcare ecosystem. Additionally, this individual must possess a variety of skill sets such as pursuing, performing, and overseeing cyber program transformation efforts that include : alignment to governance frameworks such as (HIPAA, SSF, NIST, ISO, FISMA, etc.), implementation of cyber solutions / products / programs such as threat intelligence / management, data protection / data loss prevention, cloud security, edge protection, endpoint detection and response, identity and access management, zero trust, vulnerability management, Business and Clinical Continuity / Disaster Recovery, Third Party risk management,, etc

Responsibilities :

As a Consulting Principal, you will need to :

Demonstrate strong regulatory technical expertise coupled with outstanding financial services industry experience.

Draw upon your demonstrated technical, industry and risk advisory knowledge to become a trusted advisor to our clients.

Ability to assess and communicate regulatory, technology and risk considerations while leveraging cross functional teams to drive expertise through the talent and client experience.

Lead the development of innovative solutions and approaches to serving clients based on evolving technological tools and trends.

Build and sustain effective third-party relationships with regulatory compliance and automation technology firms, as relevant to the execution of the strategy.

Enhance Firm capability to respond to high-profile client needs as it relates to significant, complex compliance remediation and / or program transformation.

Effectively manage, motivate, and mentor multidisciplinary teams to work as a cohesive, client-centric unit in delivering high-quality solutions to sophisticated clients.

Leverage your existing network and personal brand in the marketplace to drive growth, which includes identifying and securing new opportunities.

Oversee a diverse book of business, maintaining overall responsibility for the profitability, effective delivery, and engagement risk of all client-related work within the portfolio.

Responsibility for managing P&L, including driving net services and managing to margin metrics

Leading multiple high-profile client relationships simultaneously, while providing leadership on proposal opportunities and ongoing internal initiatives.

Recruit and retain future leaders of the firm.

Leverage your experience and expertise to advance the professional aspirations and skills of your colleagues.

Model the core RSM values of respect, integrity, teamwork, excellence, and stewardship in all interactions with clients and team members.

As a Security & Privacy Risk Principal, you will need to :

Draw upon your demonstrated technical, healthcare industry and risk knowledge to become a trusted advisor to our clients.

Effectively manage, motivate, and mentor multidisciplinary teams to work as a cohesive, client-centric unit in delivering high-quality solutions to sophisticated clients.

Leverage your existing network and personal brand in the marketplace to drive growth for cybersecurity, which includes identifying and securing new opportunities.

Oversee a diverse book of business focused on cybersecurity and broader risk consulting, maintaining overall responsibility for the profitability, effective delivery, and engagement risk of client related work within the portfolio.

Design and deliver innovative service offerings as market needs dictate

Manage multiple client projects simultaneously, while providing leadership on proposal opportunities and ongoing internal initiatives.

Recruit and retain an inclusive diverse group of qualified leaders of the firm.

Establish a network of internal and external relationships that lead to a sustained book of business and market related growth strategy.

Leverage your experience and expertise to advance the professional aspirations and skills of your colleagues.

Model the core RSM values of respect, integrity, teamwork, excellence, and stewardship in all interactions with clients and team members.

Professional Qualifications :

A bachelor's or master's degree in business, computer science, cybersecurity, information assurance or related discipline.

A minimum of 15 years of relevant professional experience - with a minimum of 10 years at a public accounting or professional services firm.

Strong business acumen - including significant experience working with health systems of all sizes, health insurance payers, and other entities or vendors that support the healthcare environment.

Deep knowledge and understanding of healthcare related cybersecurity standards (e.g., HIPAA, PCI, MARS-E, etc), including industry and federal guidance.

Broad / demonstrated connectivity to healthcare industry groups such as (HIMSS, ???)

Demonstrated contributions to thought leadership within the healthcare industry related to cyber security including speaking engagements, articles, blogs, etc.

Broad healthcare industry contacts and recent successful experience in cultivating new business and related market-facing activities.

Demonstrated ability to build a dynamic, successful team.

Exceptional interpersonal skills.

Evidence of advanced written, verbal and presentation skills, including published thought leadership material, interaction with members of senior management, etc

Ability to travel to meet client needs.

At RSM, we offer a competitive benefits and compensation package for all our people.We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients.Learn more about our total rewards at

All applicants will receive consideration for employment as RSM does not tolerate discrimination and / or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military / Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law.

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and / or employment / partnership.RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at careers@rsmus.com.

RSM will consider for employment qualified applicants with arrest or conviction records in accordance with the requirements of applicable law, including but not limited to, the California Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the San Francisco Fair Chance Ordinance. For additional information regarding RSM's background check process, including information about job duties that necessitate the use of one or more types of background checks, click here.