IT Risk Consultant, CloudSaaS Adoption

About Infinitive

Infinitive is a data & AI consultancy that enables global brands to deliver results through insights innovation and efficiency. We possess deep industry and technology expertise to drive and sustain adoption of new capabilities. We match our people and personalities to our clients culture while bringing the right mix of talent and skills to enable high return on investment.

Infinitive has been named Best Small Firms to Work For by Consulting Magazine eight times and has also been named a Washington Post Top Workplace Washington Business Journal Best Places to Work and Virginia Business Best Places to Work.

About the Role

We are seeking a Cloud / SaaS Service Adoption Risk Consultant to support clients in evaluating the security compliance operational and business risks associated with onboarding and scaling new cloud and SaaS this role you will assess inherent risk analyze controls identify gaps and produce clear well-reasoned recommendations. This role requires cloud technical literacy risk / control evaluation structured thinking and strong documentation skills.

Key Responsibilities

Cloud / Technical Expertise

• Understanding of the inherent risks associated with service types (IAM compute storage networking APIs logging encryption)
• Describe best-practice configurations and expected safeguards at a high level
• Identify misconfigurations and explain why they introduce risk
• Apply secure-by-design principles and control frameworks to new services
• Reason through technical scenarios logically and clearly communicating implications

Risk & Governance

Stakeholder Engagement

Present recommendations to leadership and risk committees as needed.

Enablement & Process Improvement

Required Qualifications

4 years in one or more areas : cloud security third-party risk SaaS vendor evaluations cybersecurity consulting or enterprise technology risk management.

Experience reviewing vendor security documentation (SOC reports CAIQ / CSA ISO 27001 FedRAMP packages etc.).

Familiarity with cloud concepts including identity and access management data residency integrations audit logging and API-driven workflows.

Strong communication and stakeholder facilitation skillsable to synthesize and present risk recommendations clearly.

Ability to manage multiple vendor / service assessments in parallel.

Preferred Qualifications

Experience working within regulated industries (financial services healthcare public sector etc.).

Understanding of frameworks such as NIST CSF ISO 27001 SOC CSA CCM / STAR.

Certifications such as CISA CCSK / CCSP Security CISM CRISC AWS / Azure / GCP Associate Level Certifications or Prosci Change Management.

Prior consulting or cross-functional advisory experience.

Required Experience :

Manager

Key Skills

Access Control System,B2C,Business Analysis,Data Structures,Affiliate Marketing,Loans

Employment Type : Full-Time

Experience : years

Vacancy : 1