The Consultant* role blends project management, cybersecurity strategy, and strong executive communication with the ability to translate technical findings to business risk. Consultants aligned with the Integrated Risk Management team at Neuvik deliver insightful and practical cybersecurity solutions to Neuvik’s clients and ensure on-time and successful delivery of all Neuvik engagements.

*Candidates will be considered for “Associate Consultant” or “Consultant” depending on seniority, skillset, and previous work experience.


Overview:

Job Title: Integrated Risk Management Consultant* (Engagement Manager)

*Candidates will be considered for “Associate Consultant” or “Consultant” depending on seniority, skillset, and previous work experience.

Position Type: Full-Time

Salary & Benefits: The estimated salary range for a new hire into this position is $85-$105k USD per year. Neuvik has a comprehensive benefits package including but not limited to Medical, Dental, Vision, 401 (k), Life Insurance, and Paid Time Off plus Federal Holidays.

Location: Remote (Up to 35% travel, as needed)

How to Apply: Reach out to us at contact@neuvik.com with a copy of your resume and a brief description of your interest in the role. Please include subject line “Application for Integrated Risk Management Consultant.”

Applications submitted through the Neuvik website contact form and/or without a resume attached will not be considered.

Neuvik is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Job Description:

A Consultant on the Integrated Risk Management team at Neuvik Solutions (“Neuvik”) uses sharp critical-thinking and keen problem-solving to solve critical cybersecurity problems for our clients. Consultants aligned with the Integrated Risk Management team at Neuvik deliver insightful and practical cybersecurity solutions to Neuvik’s clients and ensure all Neuvik engagements clearly communicate risks and potential business impact. Practically, this takes two forms: 1) Running teams – or helping to run teams – that identify vulnerabilities, discover active threats via technical or risk assessments; 2) Communicating the business impact related to identified threats and vulnerabilities to help improve a client’s overall security posture. Each Consultant at Neuvik should have a diverse background in information technology and management such that they have the analytical skills to understand cyber strategy, the business skills to understand risk management, and the critical thinking skills to offer practical solutions to clients that address root cause issues.

Role:

This Consultant role is a mid-level employment position on Neuvik’s Risk Management team, while Associate Consultant refers to individuals transitioning from entry to mid-level. Associate Consultants are expected to demonstrate the ability to translate technical security findings into true risk impacts, working beyond the parameters of typical management consulting. Associate Consultants should have the following skillset:  

  • Problem Solving: Associate Consultants must have a strong problem-solving toolkit, allowing them to independently perform qualitative and quantitative analyses, structure findings and be able to communicate findings effectively. Given the nature of Neuvik’s work, Associate Consultants must be able to translate technical findings for non-technical, executive audiences and clearly identify and communicate root causes / identified risks in business terms.
  • Project Management: Associate Consultants will lead teams of 1-3 technical or Risk consultants on client engagements ranging in duration from 1-12+ weeks with support from a Technical Lead. As a Project Manager (Engagement Manager), Associate Consultants will be responsible for coordinating both internal and client stakeholders, ensuring the on-time delivery of all engagements, and maintaining strong relationships with client counterparts. This role requires strong time management and a demonstrated ability to effectively drive teams to deliver high quality reporting against a deadline.
  • Service Line Development and Delivery: Associate Consultants must have a strong knowledge of cybersecurity and risk management and be able to clearly tie all technical and risk assessment findings to business risk and business impact. Beyond client engagements, Associate Consultants will be responsible for contributing to Risk Management service line activities, including research, writing (e.g., blog posts, conference abstracts), the creation of tools for use on assessments, and more.

The Consultant role can expect to do the above, but typically will manage multiple client relationships and/or engagements at a given time, contribute to broader Neuvik-related business development efforts, and may support internal strategic initiatives.

Responsibilities:

Consultants and Associate Consultants on the Integrated Risk Management team will:

  • Act as an Engagement Manager for client engagements, including technical assessments
  • Manage and/or deliver cybersecurity risk management engagements, which may include: risk assessments (using frameworks such as NIST CSF, NIST 800-53, ISO, HIPAA, COBIT, etc.), strategic cybersecurity engagements / cyber program development (e.g., designing cyber strategy, designing IAM programs, etc.), and/or other risk-related topical engagements per client request
  • Translate technical security findings into true risk impacts
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences, including cyber risk impact / strategy with internal client stakeholders
  • Effectively communicate complex cyber topics to various audience levels (e.g., Executive, Management, Technical)
  • Learn or apply cybersecurity frameworks such as NIST CSF, NIST 800-53, ISO 27001 and others to client environments, when necessary
  • Perform and deliver work independently as part of a fully remote team
  • Communicate internally using remote Office tools such as Microsoft Teams, Slack, or Discord

Knowledge to Gain:

Consultants and Associate Consultants on the Integrated Risk Management team will report to the Director of Integrated Risk Management and gain deep expertise in risk management and methods to translate technical findings and/or concepts to risk. Both can also expect to receive hands-on apprenticeship in business operations, business management, and communications. Individuals in this role are exposed to a wide range of technical findings and capabilities, allowing them to expand their technical knowledge of vulnerabilities/threats impacting some of the world’s largest organizations.

Qualifications:

Consultants and Associate Consultants on the Integrated Risk Management team should have a strong background in information technology, cybersecurity strategy, cyber risk management, and/or enterprise risk management as well as a demonstrated history of strong project management. Consultants and Associate Consultants should have strong problem solving, critical thinking, and communications skills. Ideal candidates will have 3-5 years of experience (depending on role; e.g., full- and/or part-time roles, internships, hands-on work) in some or all of the following:

  • Information Security, Cybersecurity, Risk Management and/or Management Consulting, with at least a non-technical working knowledge of or a desire to learn about technical domains such as network security, cloud security, application security, etc.
  • Project, program or engagement management, ideally in fast-paced or complex client environments with stakeholders of all levels (executive, management, technical)
  • Knowledge of and/or experience delivering common cybersecurity frameworks such as NIST CSF (1.1, 2.0), NIST 800-53, ISO27001
  • Desire to learn and understand emerging technology trends and the impact on our clients
  • Strong written and verbal skills to effectively document and communicate technical details in a concise, understandable manner
  • Curiosity to quickly learn difficult topics in emerging technologies and trends
  • Bachelor’s, Associate’s or equivalent degree and/or certification in a related field

Additional Considerations:

The Consultant and Associate Consultant role is based in the United States of America (U.S.). Additional considerations include, but are not limited to:

  • Ability to work on a computer for prolonged periods of time
  • Eligibility to work in the United States without sponsorship 
  • A reliable high-speed internet connection (i.e., at least 150mbps)

Willingness to travel within the U.S. up to 35%, with possible international travel (if desired).

Interested? Reach out to us at contact@neuvik.com with a copy of your resume and a brief description of your interest in the role, with the subject line: “Application for Integrated Risk Management Consultant.”