[Hiring] Cybersecurity Advisor @C3 Integrated Solutions

Role Description

C3 is looking for a Cybersecurity Advisor who is self-motivated and comfortable working both independently and as part of a collaborative consulting team. In this role, you will act as a trusted cybersecurity subject matter expert (SME) helping clients understand their risk posture and implement meaningful improvements to their security programs.

• Work directly with client leadership, technical teams, and compliance stakeholders to assess environments, identify gaps, and design practical security strategies.
• Review security policies or conduct risk assessments.
• Advise executives on security strategy, lead tabletop exercises, or help organizations prepare for compliance audits.
• Help clients make smart security decisions.

Qualifications

• Minimum of 5+ years working in Cybersecurity roles such as Consulting, Auditing, and Project Management.
• CISSP, CISA, CGRC, GSE, or CISM Certification.
• Bachelor’s Degree in Business, Accounting, Cybersecurity, Information Technology, Computer Science, Computer Information Systems, or a related discipline.
• Understanding in the areas of Information Assurance, Risk Management, Information Security, IT Audits, Compliance, Internal Control Frameworks, and Risk Assessments.
• Demonstrated ability to prioritize while simultaneously managing multiple projects, often under tight deadlines.
• Business-fluent written and spoken English language skills.
• Excellent written and verbal communications skills.
• Proven commitment to providing exceptional client service.
• Effective time management and organizational skills.
• Team player with strong interpersonal communication.
• Self-starter with a strong work ethic.
• Able to perform work which requires attention to detail, analytical ability, and organization.
• Skilled at using Microsoft Excel, Word, PowerPoint, etc.
• Strong attention to detail.

Requirements

• Familiarity with Federal laws, NIST information security concepts and frameworks, and common industry standards such as SOC 2, CIS, ISO 27001, COSO, PCI-DSS, HIPAA, and COBIT.
• Perform Risk Assessments (utilizing well-known frameworks such as NIST CSF, NIST RMF, CIS RAM, ISO27001).
• Provide Security Control Implementation (NIST 800-53, NIST 800-171, CIS 18, PCI-DSS, HIPAA).
• Perform Gap Analyses (based on compliance frameworks such as AICPA SOC 2, HIPAA, PCI-DSS, FFIEC).
• Develop Simulated Phishing Testing Campaigns.
• Develop and Implement Security Awareness Training Programs.
• Act as Virtual Chief Information Security Officer to Clients.
• Perform Business Impact Analyses (BIA).
• Facilitate Incident Response & Business Continuity Tabletop Exercises.
• Review, Develop, and Implement Cybersecurity Risk Management Programs.
• Review, Develop, and Implement Vendor/Third Party Risk Management Programs.
• Review & Develop Policies (Information Security, Business Continuity, Disaster Recovery, Incident Response, Vulnerability Lifecycle Management, Physical Security, etc.).
• Communicate Assessment Results with Management and Executives.
• Analyze Conditions and Offer Recommendations on Best Practice.
• Establish and Maintain Strong Client Relationships.
• Assist with further developing our next generation service offerings and the infrastructure required to facilitate these offerings (proposals, client-facing materials, work programs, templates).

Benefits

• To be a part of one of the fastest-growing companies in America, and a talented team to back you up.
• An awesome culture, backed up by winning several Best Places to Work awards.
• Medical, Dental, Vision Insurance.
• Four Weeks of Paid Time Off (vacation & sick leave).
• Four weeks of Paid Maternity and Paternity leave.
• Two days of Paid Volunteer Time.
• 401(k) with 4% Company Match.
• Company Bonus Structure.
• Tuition Reimbursement.
• Employer-sponsored Disability & Life Insurance.
• Professional Development.