Talent.com
Principal, Cyber Assurance

Principal, Cyber Assurance

Control RisksWashington, DC, US
30+ days ago
Job type
  • Full-time
  • Permanent
  • Quick Apply
Job description

This role may be based in NYC or Washington DC.

We are seeking a senior leader to drive the growth of Digital Risks in the United States, with a primary focus on cyber assurance, third-party risk management, and large-scale regulatory compliance audits. In this role, you will collaborate closely with our cyber threat intelligence, advisory, and response teams to expand our digital risk business. Your responsibility will include overseeing the assessment, and improving client cybersecurity programs, ensuring alignment with industry standards and regulatory requirements, and guiding clients through complex third-party audits.

Key Responsibilities

Cybersecurity Program Evaluation

  • Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks.
  • Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements.

Third-Party Risk Management Audits

  • Oversee large-scale third-party risk and compliance audits, ensuring alignment with industry-specific frameworks, regulatory standards, and contractual obligations.

    • Regulatory Compliance Audits

  • Oversee regulatory compliance audits to ensure clients meet required standards and regulations.
  • Advise clients on audit preparation and guide them through maintaining compliance while improving cybersecurity measures.
  • Ensure clients' compliance programs address both current and emerging regulatory requirements.

    • Penetration Testing & Vulnerability Management Support

  • Partner with the penetration testing team to incorporate findings into broader cyber assurance reviews.
  • Lead remediation efforts for high-risk vulnerabilities, aligning them with the client’s overall compliance and cybersecurity objectives.

    • Client Relationship & Business Development

  • Build and sustain relationships with key stakeholders, especially C-suite executives, positioning Digital Risks as a leader in cyber assurance and regulatory compliance.
  • Identify and capitalize on new business opportunities in cyber assurance, third-party risk assessments, and compliance audits.
  • Provide thought leadership on cyber assurance trends, regulatory updates, and best practices to enhance client relationships and grow the practice.
  • Advise clients on continuously improving their cybersecurity and compliance frameworks based on audit findings and risk assessments.

    • Practice Development & Team Leadership

  • Recruit, develop, and lead a high-performing team specializing in cyber assurance, third-party risk management, and regulatory compliance.
  • Foster a culture of continuous learning, ensuring the team stays ahead of emerging trends in cybersecurity and compliance.
  • Contribute to the creation of innovative services and solutions to meet clients' evolving needs in cyber assurance and compliance auditing.

    • Requirements

  • Candidates must be legally authorized to work in the US on a permanent basis without sponsorship.
  • Candidates must possess unrestricted US work authorization.

    • Experience & Knowledge :

  • 12+ years of experience in cybersecurity, specializing in cyber assurance, third-party risk management, and regulatory compliance audits.
  • Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001).
  • Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles.
  • In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for both commercial and government sectors.
  • Experience integrating penetration testing and vulnerability assessments into broader cyber assurance strategies.

    • Education & Certifications :

  • Bachelor's or master’s degree in information security, Computer Science, Engineering, or a related field.
  • Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing.

    • Skills :

  • Strong commercial acumen, with proven ability to generate new business in cyber assurance and regulatory compliance services.
  • Exceptional communication, presentation, and analytical skills with the ability to influence senior stakeholders and deliver impactful insights that improve cybersecurity resilience and regulatory compliance.

    • The base salary range for this position in Washington DC is $180,000-$205,000 per year. The base salary range for this position in New York City is $200,000-$215,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience.

    Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

    Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.

    Benefits

  • Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
  • Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
  • Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program.
  • As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.
    • Create a job alert for this search

    Principal Assurance • Washington, DC, US

    Related jobs
    Cybersecurity Subject Matter Expert - Lead

    Cybersecurity Subject Matter Expert - Lead

    Interactive Process Technology LLCFort Belvoir, VA, USA
    Full-time
    Quick Apply
    Cybersecurity Subject Matter Expert - Lead.IPTA's Technology Solutions Team is passionate about providing our customers with technical solutions that satisfy their business needs.Through collaborat...Show moreLast updated: 30+ days ago
    Cyber Defense Information Assurance Security Architecture and Engineering (IASAE) – Level III

    Cyber Defense Information Assurance Security Architecture and Engineering (IASAE) – Level III

    Lucayan Technology Solutions LLCChantilly, VA, US
    Full-time
    Quick Apply
    Chantilly, Virginia | 🕒 Full-Time | 🔒 TS / SCI with Polygraph | Onsite Overview Lucayan Technology LLC is hiring a Cyber Defense IASAE Level III to join our cybersecurity ...Show moreLast updated: 12 days ago
    Cyber Defense Information Assurance Security Architecture and Engineering (IASAE) – Level II

    Cyber Defense Information Assurance Security Architecture and Engineering (IASAE) – Level II

    Lucayan Technology Solutions LLCChantilly, VA, US
    Full-time
    Quick Apply
    Chantilly, Virginia | 🕒 Full-Time | 🔒 TS / SCI with Polygraph | Onsite Overview Lucayan Technology LLC is seeking a Cyber Defense IASAE Level II to join our growing team i...Show moreLast updated: 12 days ago
    • Promoted
    Principal Auditor - Payments Network

    Principal Auditor - Payments Network

    Capital OneBaltimore, MD, US
    Full-time +1
    Principal Auditor - Payments Network.Capital One’s Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization’s Audit ...Show moreLast updated: 30+ days ago
    Senior Consultant - Cyber Assurance

    Senior Consultant - Cyber Assurance

    Control RisksWashington, DC, US
    Full-time +1
    Quick Apply
    This role may be based in NYC or Washington DC.We are seeking a highly skilled and motivated Senior Consultant to join our growing cybersecurity assurance team. In this role, you will lead and deliv...Show moreLast updated: 30+ days ago
    Information Assurance (IA) Lead

    Information Assurance (IA) Lead

    Lucayan Technology Solutions LLCChantilly, VA, US
    Full-time
    Quick Apply
    Chantilly, VA | 🕒 Full-Time | 🔒 TS / SCI with Polygraph | Onsite Overview Lucayan Technology LLC is hiring an Information Assurance (IA) Lead to support critic...Show moreLast updated: 12 days ago
    • Promoted
    Director, Technology Risk- Enterprise Services Risk

    Director, Technology Risk- Enterprise Services Risk

    Capital OneBaltimore, MD, US
    Full-time +1
    Director, Technology Risk- Enterprise Services Risk.Director, Technology Risk- Enterprise Services Risk.The Enterprise Services Risk organization is expanding with a focus on attracting innovative,...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Architect / Engineer

    Cybersecurity Architect / Engineer

    LeidosGermantown, MD, US
    Full-time
    Join us in improving and shaping the future of smart mobility with a group of intelligent, motivated, and dedicated individuals! The Leidos Surface Transportation group focuses on improving transpo...Show moreLast updated: 1 day ago
    • Promoted
    Tech Risk Assurance Director

    Tech Risk Assurance Director

    JPMorgan Chase & Co.McLean, VA, United States
    Full-time
    As a Tech Risk Assurance Director at JPMorgan Chase within the Risk Intelligence & Advisory (RIA) Team, you are an integral part of a team that works to identify, dimension and mitigate technology ...Show moreLast updated: 11 days ago
    • Promoted
    Senior Manager, Network Security Engineering (Cloud Operations Resilience Engineering)

    Senior Manager, Network Security Engineering (Cloud Operations Resilience Engineering)

    Capital OneBaltimore, MD, US
    Full-time +1
    Senior Manager, Network Security Engineering (Cloud Operations Resilience Engineering).Capital One is looking for a Cyber Security professional who will support enterprise network security devices ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager - Global Payment Network Information Security Office (ISO) Consultant

    Senior Manager - Global Payment Network Information Security Office (ISO) Consultant

    Capital OneBaltimore, MD, US
    Full-time +1
    Senior Manager - Global Payment Network Information Security Office (ISO) Consultant.At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information ...Show moreLast updated: 30+ days ago
    • Promoted
    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid)

    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid)

    Capital OneFalls Church, VA, US
    Full-time +1
    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid).Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the ...Show moreLast updated: 30+ days ago
    • Promoted
    Director, Payment Network Technology Risk

    Director, Payment Network Technology Risk

    Capital OneBaltimore, MD, US
    Full-time +1
    Director, Payment Network Technology Risk.Capital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dr...Show moreLast updated: 30+ days ago
    Cybersecurity Architect

    Cybersecurity Architect

    Fusion TechnologyWashington, DC, USA
    Full-time
    Quick Apply
    Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's...Show moreLast updated: 13 days ago
    • Promoted
    Senior Cyber Security Engineer

    Senior Cyber Security Engineer

    LeidosManassas, VA, US
    Full-time
    Senior Cyber Security Engineer.This role combines technical expertise in both software and hardware to support the design and deployment of defensive cyber measures. The engineer conducts research o...Show moreLast updated: 30+ days ago
    • Promoted
    E-Discovery Project Coordinator

    E-Discovery Project Coordinator

    LeidosUpper Marlboro, MD, US
    Full-time
    E-Discovery Project Coordinator.This is a hybrid position with a requirement to come into the office 1 day a week, or as needed. however, this could change.Typical responsibilities include : .The eDi...Show moreLast updated: 17 days ago
    • Promoted
    Principal Auditor - Cyber, Risk and Analysis Technology Audit

    Principal Auditor - Cyber, Risk and Analysis Technology Audit

    Capital OneFalls Church, VA, US
    Full-time +1
    Principal Auditor - Cyber, Risk and Analysis Technology Audit.Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organiza...Show moreLast updated: 15 days ago
    • Promoted
    Partner Engagement Manager, U.S. Cyber Command

    Partner Engagement Manager, U.S. Cyber Command

    OnebriefFort George G Meade, MD, US
    Full-time
    Required : Top Secret clearance with eligibility for SCI.In person in Fort Meade, Maryland.Onebrief is a revolutionary platform for military staff workflows and operational planning.The software is ...Show moreLast updated: 30+ days ago