Senior Cybersecurity Advisory Associate

Job Summary  

The Senior Associate supports the delivery of cybersecurity consulting engagements across diverse client environments. The role involves conducting cybersecurity gap and risk assessments, supporting the implementation of recognized security frameworks, and developing clear, structured policies and procedures. The Senior Associate analyzes control gaps, assesses risk exposure, and delivers practical, prioritized recommendations to improve security maturity. 

The role requires strong analytical and communication skills, hands‑on execution capability, and effective collaboration with clients and internal teams. The Senior Associate contributes to engagement delivery, proposal development, and mentoring junior team members. Exposure to complex, IP‑sensitive technology environments is considered a value‑add. Semiconductor Industry experience will be preferred. 

Responsibilities  

• Conduct comprehensive cybersecurity gap assessments across client environments, evaluating governance, processes, and technical controls. 

• Design, develop, implement, and maintain information security frameworks and control programs aligned with:  

• ISO/IEC 27001:2022 

• NIST Cybersecurity Framework (CSF) 2.0 

• NIST SP 800‑53 

• Other applicable industry standards 

• Perform risk assessments focusing on:  

• Cybersecurity and information security risks 

• Business continuity and operational resilience 

• Data protection and privacy risks 

• Develop and document cybersecurity policies, standards, procedures, and guidelines aligned with international standards, contractual requirements, and organizational objectives. 

• Lead independent third‑party security assessments, audits, and maturity evaluations, and deliver clear, actionable, and risk‑prioritized recommendations. 

• Support organizations in improving cybersecurity maturity, including risk management, control design, remediation planning, and continuous improvement initiatives. 

• Manage client engagements end‑to‑end, including:  

• RFP responses and proposal development 

• Engagement planning, execution, and delivery management 

• Stakeholder communication and reporting 

• Collaborate effectively with cross‑functional internal teams and external stakeholders, including IT, engineering, legal, compliance, and business leadership. 

Required Skills & Experience  

• Strong understanding of cybersecurity risk management, governance, and control frameworks. 

• Ability to translate technical findings into business‑relevant insights. 

• Experience producing clear, structured documentation and executive‑level reports. 

• Ability to work across diverse client environments and operating models 

• Ability to drive compliance maturity and foster strong stakeholder relationships.  

• Understanding of technology‑ or IP‑driven environments (e.g., advanced manufacturing or semiconductor) is a plus, but not mandatory. 

• Awareness of cybersecurity considerations in mixed IT and engineering/OT environments, including high‑availability and operational constraints. 

Competencies  

Accountability | Customer Centricity | Collaboration | Integrity | Perseverance | Learning Mindset | Networking | Communication Skills  

Keywords for Job Portal  

Cybersecurity Compliance  

Governance, Risk and Compliance 

IEC 62443  

IoT Security  

NIST CSF 

NIST Gap Assessment