Talent.com
Principal, Cyber Assurance
Principal, Cyber AssuranceControl Risks • Washington, DC, US
Principal, Cyber Assurance

Principal, Cyber Assurance

Control Risks • Washington, DC, US
30+ days ago
Job type
  • Full-time
  • Permanent
  • Quick Apply
Job description

This role may be based in NYC or Washington DC.

We are seeking a senior leader to drive the growth of Digital Risks in the United States, with a primary focus on cyber assurance, third-party risk management, and large-scale regulatory compliance audits. In this role, you will collaborate closely with our cyber threat intelligence, advisory, and response teams to expand our digital risk business. Your responsibility will include overseeing the assessment, and improving client cybersecurity programs, ensuring alignment with industry standards and regulatory requirements, and guiding clients through complex third-party audits.

Key Responsibilities

Cybersecurity Program Evaluation

  • Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks.
  • Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements.

Third-Party Risk Management Audits

  • Oversee large-scale third-party risk and compliance audits, ensuring alignment with industry-specific frameworks, regulatory standards, and contractual obligations.

    • Regulatory Compliance Audits

  • Oversee regulatory compliance audits to ensure clients meet required standards and regulations.
  • Advise clients on audit preparation and guide them through maintaining compliance while improving cybersecurity measures.
  • Ensure clients' compliance programs address both current and emerging regulatory requirements.

    • Penetration Testing & Vulnerability Management Support

  • Partner with the penetration testing team to incorporate findings into broader cyber assurance reviews.
  • Lead remediation efforts for high-risk vulnerabilities, aligning them with the client’s overall compliance and cybersecurity objectives.

    • Client Relationship & Business Development

  • Build and sustain relationships with key stakeholders, especially C-suite executives, positioning Digital Risks as a leader in cyber assurance and regulatory compliance.
  • Identify and capitalize on new business opportunities in cyber assurance, third-party risk assessments, and compliance audits.
  • Provide thought leadership on cyber assurance trends, regulatory updates, and best practices to enhance client relationships and grow the practice.
  • Advise clients on continuously improving their cybersecurity and compliance frameworks based on audit findings and risk assessments.

    • Practice Development & Team Leadership

  • Recruit, develop, and lead a high-performing team specializing in cyber assurance, third-party risk management, and regulatory compliance.
  • Foster a culture of continuous learning, ensuring the team stays ahead of emerging trends in cybersecurity and compliance.
  • Contribute to the creation of innovative services and solutions to meet clients' evolving needs in cyber assurance and compliance auditing.

    • Requirements

  • Candidates must be legally authorized to work in the US on a permanent basis without sponsorship.
  • Candidates must possess unrestricted US work authorization.

    • Experience & Knowledge :

  • 12+ years of experience in cybersecurity, specializing in cyber assurance, third-party risk management, and regulatory compliance audits.
  • Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001).
  • Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles.
  • In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for both commercial and government sectors.
  • Experience integrating penetration testing and vulnerability assessments into broader cyber assurance strategies.

    • Education & Certifications :

  • Bachelor's or master’s degree in information security, Computer Science, Engineering, or a related field.
  • Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing.

    • Skills :

  • Strong commercial acumen, with proven ability to generate new business in cyber assurance and regulatory compliance services.
  • Exceptional communication, presentation, and analytical skills with the ability to influence senior stakeholders and deliver impactful insights that improve cybersecurity resilience and regulatory compliance.

    • The base salary range for this position in Washington DC is $180,000-$205,000 per year. The base salary range for this position in New York City is $200,000-$215,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience.

    Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

    Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.

    Benefits

  • Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
  • Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
  • Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program.
  • As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.
    • Create a job alert for this search

    Principal Assurance • Washington, DC, US

    Related jobs
    Cybersecurity Engineer-DARPA, TS / SCI

    Cybersecurity Engineer-DARPA, TS / SCI

    Blue Sky Innovators • Arlington, VA, US
    Full-time
    Bachelor's degree (Master's Preferred) in Cybersecurity, Computer, Electrical, or Electronics Engineering, or Mathematics with a concentration in computer science or equivalent;.Individual shall be...Show more
    Last updated: 30+ days ago • Promoted
    Director of Cyber Analysis

    Director of Cyber Analysis

    Technomics • Arlington, VA, United States
    Full-time
    Technomics is a growing employee-owned, decision analytics company that specializes in cost and economic analysis to facilitate. We enable a wide range of clients across the Federal government, from...Show more
    Last updated: 30+ days ago • Promoted
    Subject Matter Expert (SME) - Cybersecurity

    Subject Matter Expert (SME) - Cybersecurity

    Lafayette Group Inc. • Arlington, VA, United States
    Part-time
    Subject Matter Expert (SME) - Cybersecurity.Lafayette Group is seeking qualified and team-oriented individuals to work with federal government organizations in support of national cybersecurity pro...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Protect Analyst

    Cyber Security Protect Analyst

    TekSynap • Fort Belvoir, Virginia, USA
    Full-time
    Responsibilities & Qualifications.The Protect team serves as the Subscriber Cybersecurity Liaison and provides dedicated cybersecurity support. The following are required responsibilities for th...Show more
    Last updated: 13 days ago • Promoted
    Third-Party Risk Assurance Manager

    Third-Party Risk Assurance Manager

    Cotton & CO • Alexandria, VA, United States
    Full-time
    Third Party Risk Assurance Manager - (Remote, US).What to expect when you join the Sikich family.Team members at Sikich have a lot in common while also being part of a rich and varied group of cont...Show more
    Last updated: 11 days ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    eTelligent Group • Washington, DC, United States
    Full-time
    Over the past 15 years, eTel has delivered essential solutions for the federal government by securing and managing data, providing scalable identity access, modernizing legacy systems, and building...Show more
    Last updated: 18 days ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    Booz Allen Hamilton • Riverdale, MD, United States
    Full-time +1
    As a Cybersecurity Architect at Booz Allen, you'll support the program management of a suite of cybersecurity tools, deliver a Zero Trust Architecture roadmap, and develop an Enterprise Integration...Show more
    Last updated: 18 days ago • Promoted
    Cybersecurity Engineer-DARPA, TS / SCI

    Cybersecurity Engineer-DARPA, TS / SCI

    Blue Sky Innovators Inc • Arlington, VA, United States
    Full-time
    Bachelor's degree (Master's Preferred) in Cybersecurity, Computer, Electrical, or Electronics Engineering, or Mathematics with a concentration in computer science or equivalent;.Individual shall be...Show more
    Last updated: 5 days ago • Promoted
    Cybersecurity Manager

    Cybersecurity Manager

    Amentum • Washington, DC, United States
    Full-time
    This is a hybrid role which requires you to be located in one of these areas.You have excellent communication, time management, and detail-oriented skills, which you'll put to use overseeing and ma...Show more
    Last updated: 18 days ago • Promoted
    16Yrs Information Assurance and Security Specialist

    16Yrs Information Assurance and Security Specialist

    AHU Technologies, Inc. • Washington, DC, United States
    Permanent
    Role : Information Assurance and Security Specialist.Identify network problems, and recommend improvements to ensure optional performance. .Ability to monitor and analyze data traffic patterns withi...Show more
    Last updated: 5 days ago • Promoted
    Senior Director, Cybersecurity Programs

    Senior Director, Cybersecurity Programs

    The Aspen Institute • Washington, DC, United States
    Full-time
    The Aspen Institute is a global nonprofit organization committed to realizing a free, just, and equitable society.Since its founding in 1949, the Institute has been driving change through dialogue,...Show more
    Last updated: 3 days ago • Promoted
    Cybersecurity Architect

    Cybersecurity Architect

    Cybervance • Washington, DC, United States
    Full-time
    Position Title : Cybersecurity Architect.Location : On Site - Washington, D.Clearance Required : Public Trust.Cybervance is a rapidly growing information security and information technology company in...Show more
    Last updated: 18 days ago • Promoted
    Senior Cybersecurity Architect

    Senior Cybersecurity Architect

    Special Aerospace Security Services, Inc. • Washington, DC, United States
    Full-time
    The Senior Cybersecurity Architect will lead enterprise-level cybersecurity strategy, architecture design, and compliance for DCIO(IE & SAP-IT) systems. This role ensures alignment with DoD directiv...Show more
    Last updated: 18 days ago • Promoted
    Cybersecurity Lead Manager

    Cybersecurity Lead Manager

    ASRC Federal Holding Company • Alexandria, VA, United States
    Full-time
    ASRC Federal is a leading government contractor furthering missions in space, public health and defense.As an Alaska Native owned corporation, our work helps secure an enduring future for our share...Show more
    Last updated: 18 days ago • Promoted
    Director - Cybersecurity

    Director - Cybersecurity

    Five Guys • Alexandria, VA, United States
    Full-time
    The Director - Cybersecurity is responsible for leading Five Guys cybersecurity strategy, governance, and operations to protect critical assets, data, and infrastructure. This executive-level role o...Show more
    Last updated: 18 days ago • Promoted
    Cybersecurity Lead

    Cybersecurity Lead

    clearAvenue, LLC • Columbia, MD, United States
    Full-time +1
    Analyze IT requirements and provide objective advice of information security requirements.Analyst, design, and implement efficient information security technical and organizational measures.Manage ...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Lead Engineer

    Cyber Security Lead Engineer

    E-talentnetwork • Fort Belvoir, VA, United States
    Full-time
    Title : Cyberspace Readiness and Joint Training Specialist.Clearance : Active Top Secret and Above.Must have an active DOD Top Secret Clearance at time of proposal submission and be eligible for IT-I...Show more
    Last updated: 5 days ago • Promoted
    Director of Cyber Security

    Director of Cyber Security

    ABBTECH Professional Resources • Silver Spring, MD, United States
    Full-time
    This program requires US Citizenship or Green Card (Lawful Permanent Residents).Location : Wheaton, MD (must go onsite Mon-Fri). The Cybersecurity Lead will oversee the organization's cybersecurity i...Show more
    Last updated: 14 days ago • Promoted