The Cybersecurity Director will oversee cybersecurity processes, manage risk assessments, ensure compliance, and lead client projects while providing governance and training services.
About CFGI:
CFGI is a unique and highly specialized financial consulting firm that is strategically positioned to assist the office of the CFO through a range of routine and complex business scenarios. As an extension of your corporate finance team, CFGI works alongside your internal staff, serving in a variety of roles from technical accounting advisor, M&A support, tax services, etc. delivering seamless support services.
Technical & Domain Experience:
· Build cybersecurity Process Risk & Control frameworks for clients that are rationalized against applicable laws and standards.
· Conduct Risk Assessment and Maturity Assessments for clients.
· Audit Control definition and control testing against client’s Internal Audit framework, or against industry standards or laws & regulations.
· Conduct Cybersecurity and Data Privacy Compliance readiness assessments for clients.
· Guide clients in establishing cybersecurity policies, standards, and procedures.
· Manage cybersecurity training & awareness services for clients from design to implementation.
· Oversee the implementation and management of security tools, technologies, and processes.
· Advise clients on cybersecurity functions’ metrics and reporting for various level of client audiences including Audit Committee and Board of Directors.
· Be the client’s Subject Matter Expert on compliance questions for cybersecurity regulations and industry practices.
· Provide governance services for clients to oversee their cybersecurity functions and practices, including governance over: Policies & Procedures, Risk Management, Vulnerability Management, Incident Management, etc.
· Build Risk Management practices for clients, including policies, procedures, Risk Register, etc.
· Assist clients in implementing market GRC tools.
· Lead Third Party Risk Management (TPRM) for clients, including designing and operationalizing a TPRM framework, reviewing existing and new vendors for clients, and provide ongoing monitoring services.
· Needs strong understanding/experience of the German/EU regulatory compliance landscape in Cybersecurity / Data Privacy space and its impact on businesses.
Process & Project Management Experience:
· Ability to prioritize and multitask. Flexibility and adaptability in work approach.
· Ability to manage project plans for client various data privacy engagements, including creating tasks, timeline and budgets.
· Ability to report to leadership and clients on status updates periodically, including progress and challenges.
Soft Skills:
· Strong interpersonal and communication skills; experience with cross-cultural communications.
· Agile and flexible, capable of dealing with ambiguity, and confront challenges and opportunities with speed, endurance and decisiveness.
· Manage a team of consultants and managers on various projects.
· Language preference – German, French & English
Technical Qualifications and Certifications:
· Bachelor’s degree in business, computer science, information systems, engineering, or a related discipline.
· Strong knowledge in national and global industry practices and regulations in Cybersecurity and Data Privacy, including NIST CSF, CIS, PCI DSS, HIPAA, ISO27001, CMMC, FedRAMP, SOX, GDPR, CCPA, etc.
· Industry certifications would be preferred but not required: CISSP, CISM, etc.
Top Skills
Compliance
Cybersecurity
Risk Management
Similar Jobs
Information Technology • Security
The Director of Demand Generation & ABM will lead marketing campaigns to drive engagement and pipeline growth, focusing on ABM and digital marketing strategies while collaborating with Sales and Product teams.
Top Skills:
6SenseAsanaBomboraDemandbaseHubspotMarketoSalesforce
Information Technology • Security • Cybersecurity
This role involves promoting SentinelOne's cybersecurity technology, producing content, and presenting at events, focusing on market trends and product value.
Top Skills:
AIAutomationCloud SecurityCybersecurityData LakesData SecurityEndpointIdentitySIEM
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Drive Cybersecurity channel partnerships and sales revenue, achieving sales targets while cultivating strong relationships and managing a team.
Top Skills:
CybersecurityData AnalysisPartner ManagementSales Strategies
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
