Cybersecurity Risk Advisor

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI.

At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world.

This role can be Remote anywhere within the United States.

Position Summary

As a Cybersecurity Risk Advisor supporting clients across the United States, United Kingdom, European Union, and Asian Pacific regions, you will play a pivotal role in strengthening the cybersecurity posture of leading financial institutions. This role is ideal for a seasoned professional with approximately 8 years of experience in cybersecurity, risk management, or IT governance, particularly within the financial services and government sector. You will work closely with client leadership teams to assess risk, implement security frameworks, and ensure compliance with regional regulatory standards such as NIST CSF 2.0, CMMC, GDPR, Data Protection Act 2018, and others. You will also contribute to the development of security strategies that align with both global best practices and local regulatory expectations.

Position Responsibilities

• Create a relationship with clients as a trusted cybersecurity advisor.
• Develop and implement cybersecurity risk management strategies tailored to the needs of financial services and government clients in various regions.
• Advise clients on compliance with regulatory frameworks and global standards like ISO 27001, NIST, and CIS.
• Conduct security assessments and gap analyses to identify weaknesses and recommend actionable improvements.
• Collaborate with client stakeholders, including CISOs and IT leadership, to align cybersecurity initiatives with business objectives.
• Stay current with evolving cyber threats, regulatory updates, and industry trends across various regions.
• Support clients during internal and external audits, including preparation of documentation and remediation planning.
• Collaborate with team members and contribute to the continuous improvement of internal methodologies and knowledge sharing.
• Respond to ad hoc client queries related to cybersecurity, risk, and compliance.
• Travel within the US region up to 15% as required.
• Other duties as

Position Requirements

• Possesses excellent communication and presentation skills, effectively engages with senior stakeholders and varied audiences, and can explain complex ideas in straightforward business terms.
• Strong understanding of international regulatory frameworks.
• Familiarity with global standards such as ISO 27001, NIST CSF, CIS Controls, and COBIT.
• Proven experience conducting security assessments, audits, and risk analyses.
• Self-motivated, adaptable, and capable of working independently on tasks and projects.
• Bachelor's degree in a relevant field such as Computer Science, Information Technology, Cybersecurity or equivalent combination of education and professional experience, typically 4+ years in information security, IT operations, or a related technical role.

Preferred Qualifications

• Experience in cybersecurity, IT risk, or compliance, preferably within the financial services
• Industry certifications such as CISSP, CISM, CRISC, or CCSP
• Previous MSP/MSSP experience.
• Technical knowledge of IT systems and security controls (e.g., Microsoft, Cisco, endpoint protection, IAM, etc.).
• Strong familiarity with and understanding of O365 admin center.