Jobs · Information Technology · California

Cybersecurity Consultant

KAI Partners, Inc. · Roseville, CA · 2 wk ago
Information Technology$118k–$133k/yrFull-time

Responsibilities

  • Lead and execute cybersecurity consulting engagements, including risk assessments, control gap analyses, compliance evaluations, and security program reviews, aligned to client scope and objectives.
  • Develop and deliver client-ready cybersecurity artifacts, including assessment reports, risk registers, control matrices, remediation roadmaps, and supporting documentation aligned to KAIP quality standards.
  • Apply recognized cybersecurity frameworks and regulatory standards, including NIST Cybersecurity Framework (NIST CSF), CIS Critical Security Controls, ISO/IEC 27001, and GLBA, using a risk-based approach tailored to client environments and maturity.
  • Facilitate client interactions, including interviews, workshops, tabletop exercises, and presentations, to gather information, validate findings, and communicate actionable recommendations to stakeholders.
  • Provide subject-matter expertise across governance, risk, compliance, and core cybersecurity domains, including identity and access management, vulnerability management, cloud security, endpoint and network security, and security awareness.
  • Contribute to measurable cybersecurity outcomes, including control effectiveness evaluation, compliance assessment scoring, risk remediation tracking, and security improvement reporting aligned to engagement objectives and quality standards.
  • Support continuous improvement of KAIP cybersecurity consulting methodologies, templates, tools, and delivery approaches while collaborating with engagement leadership.

Qualifications

  • Ability to assess cybersecurity program maturity, interpret risk, and identify practical improvement opportunities.
  • Ability to apply structured consulting methods while adapting approach to client context, maturity, and engagement scope.
  • Strong knowledge of cybersecurity frameworks and standards, including NIST CSF, CIS Critical Security Controls, ISO 27001, and GLBA.
  • Capability to evaluate control effectiveness, regulatory alignment, and remediation priorities using a risk-based lens.
  • Ability to translate regulatory, technical, and operational requirements into clear, client-ready guidance and recommendations.
  • Working knowledge of tools and platforms used for security information and event management (SIEM), endpoint detection and response (EDR), vulnerability scanning, identity and access management (IAM), and cloud security.
  • Strong analytical, problem-solving, prioritization, and professional judgment skills.
  • Strong client-facing communication, facilitation, presentation, documentation, and relationship-management skills.
  • Ability to manage multiple workstreams while maintaining responsiveness, quality, transparency, and attention to detail.
  • Familiarity with cybersecurity needs in the public sector, higher education, or other regulated environments is preferred.
  • Collaborative mindset and commitment to staying current with cybersecurity threats, trends, and best practices.
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field, or equivalent combination of education and relevant experience.
  • 5-9 years of experience in cybersecurity, IT risk, compliance, or security consulting roles.
  • CompTIA Security+ and one additional certification from the following list: CISSP, CISM, CRISC, or CISA.
  • Experience working in client-facing or consulting environments.

Skills

  • Ability to assess cybersecurity program maturity, interpret risk, and identify practical improvement opportunities.
  • Ability to apply structured consulting methods while adapting approach to client context, maturity, and engagement scope.
  • Strong knowledge of cybersecurity frameworks and standards, including NIST CSF, CIS Critical Security Controls, ISO 27001, and GLBA.
  • Capability to evaluate control effectiveness, regulatory alignment, and remediation priorities using a risk-based lens.
  • Ability to translate regulatory, technical, and operational requirements into clear, client-ready guidance and recommendations.
  • Working knowledge of tools and platforms used for security information and event management (SIEM), endpoint detection and response (EDR), vulnerability scanning, identity and access management (IAM), and cloud security.
  • Strong analytical, problem-solving, prioritization, and professional judgment skills.
  • Strong client-facing communication, facilitation, presentation, documentation, and relationship-management skills.
  • Ability to manage multiple workstreams while maintaining responsiveness, quality, transparency, and attention to detail.
  • Familiarity with cybersecurity needs in the public sector, higher education, or other regulated environments is preferred.
  • Collaborative mindset and commitment to staying current with cybersecurity threats, trends, and best practices.

Similar jobs

Cybersecurity Consultant

Accord Technologies IncIrving, TX· 1 mo ago
Information Technologyapply on candidateportal.ceipal.com

Cybersecurity Consultant

GuidehouseMcLean, VA· 1 wk ago
Information Technology$85k–$141k/yrapply on guidehouse.wd1.myworkdayjobs.com

Cybersecurity Consultant

GuidehouseBethesda, MD· 1 wk ago
Information Technology$85k–$141k/yrapply on guidehouse.wd1.myworkdayjobs.com