Sr. Consultant, Cybersecurity at Nordic Global

We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Sr. Consultant, Cybersecurity at Nordic Global. Location Information: US - Remote, United States. . Make a difference. Be happy. Grow your career.. The Role. Nordic Consulting is seeking a highly skilled and experienced Senior Security Consultant to lead the development and implementation of a comprehensive Insider Threat Program for our hospital clients. This individual will be responsible for designing program strategies, policies, procedures, and technologies aimed at effectively detecting, preventing, and responding to insider threats within a complex healthcare environment. The ideal candidate will have extensive experience in cybersecurity within healthcare provider settings and specialized expertise in insider threat management.. Key Areas: . Client Delivery & Executive Oversight: Lead and oversee high-impact client engagements to ensure quality, consistency, and value delivery; serve as a trusted advisor to provider executives and health IT leadership teams.. Delivery Quality and Solution Ownership: Deliver high-quality consulting services to strategic clients, developing and implementing solution-based tools and solutions when needed.. Market Presence & Thought Leadership: Represent the firm in industry forums, contribute to thought leadership, and collaborate with business development teams to position the firm as a leader in healthcare cybersecurity and GRC.. Key Responsibilities. Program Development and Implementation:. Lead the design, build, and deployment of a robust Insider Threat Program tailored specifically for healthcare providers.. Develop and document policies, procedures, playbooks, and response plans to address insider threats proactively and reactively.. Risk Assessment and Analysis:. Conduct comprehensive insider threat risk assessments to identify vulnerabilities, recommend risk mitigation strategies, and enhance existing security controls.. Utilize analytics and behavior-based threat detection tools to identify anomalous activity indicative of insider risks.. Tool Evaluation and Implementation:. Assess, recommend, and deploy advanced insider threat detection technologies (e.g., User Behavioral Analytics (UBA), Data Loss Prevention (DLP), Privileged Access Management (PAM), . SIEM. ).. Collaborate with the client’s IT and cybersecurity teams to integrate insider threat detection capabilities into existing security platforms and processes.. Incident Response. and Management:. Develop detailed . incident response. procedures specifically for insider threat scenarios.. Provide expert guidance and oversight during insider threat incident investigations and mitigation efforts.. Training and Awareness:. Develop and facilitate insider threat awareness training programs for healthcare leadership and staff.. Work closely with organizational leadership to foster a culture of security and vigilance against insider risks.. Continuous Program Improvement:. Establish performance metrics, Key Performance Indicators (KPIs), and reporting frameworks to continuously assess the effectiveness of the Insider Threat Program.. Provide ongoing recommendations to refine and mature the program based on emerging trends, threats, and best practices.. Qualifications:. Required:. Generally, requires a Bachelor's degree and 8 years of related experience, a Master's degree and 6 years of related experience, or 11 years of related experience and no degree.. Degree in Cybersecurity, Information Technology, Computer Science, or a related field is preferred.. Minimum of 7-10 years of professional experience in cybersecurity with at least 5 years specializing in insider threat program development, implementation, and management.. Strong experience working within healthcare provider environments, demonstrating thorough knowledge of healthcare-specific regulatory requirements (e.g., HIPAA, HITECH, HITRUST).. Deep understanding of cybersecurity frameworks such as NIST Cybersecurity Framework (CSF) and insider threat standards.. Familiarity with insider threat detection tools, technologies, and methodologies, including UBA, SIEM, DLP, and PAM solutions.. Proven experience conducting insider threat risk assessments and investigations.. Exceptional communication skills, capable of clearly articulating complex cybersecurity concepts to technical and non-technical stakeholders.. Preferred:. Previous consulting experience in healthcare. Previous senior-level experience/leadership in a hosptial organization. Familiarity with firm operations, business development processes, and delivery methodology.. Additional details. 80% remote position. Travel up to 20% of the time, including to the Nordic home office in Madison, WI and client sites when needed.. This job description supersedes any previous job description. The job description does not constitute an employment contract between the employer and employee and is subject to change by the employer as the needs of the employer and/or requirements of the job change.. The key responsibilities and additional details described here are representative of those that must be met by an employee to successfully perform the essential functions. Reasonable accommodations may be made to enable individuals with disabilities to perform some essential functions.. Nordic does not sponsor employment visas, and in compliance with federal law, anyone hired by Nordic will be required to verify identity and eligibility to work in the USA and to complete required employment eligibility verification document upon hire.. Nordic is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, marital or veteran status, or any other protected status under applicable federal, state, or local laws. We encourage individuals of all backgrounds to apply, including women, minorities, individuals with disabilities, and veterans. . .