Reveal Risk is looking for a full-time Senior Cybersecurity Consultant who’s passionate about solving complex security challenges and thrives on creating clarity, delivering practical solutions, and building strong client relationships. In this role, you’ll bring technical expertise and business acumen to projects that help our clients reduce risk and drive meaningful security outcomes.

Our ideal candidate has hands-on experience building and maturing cybersecurity programs, a consultative mindset, and a team-first attitude. If you’re excited by variety, client impact, and the chance to grow with a purpose-driven firm, we’d love to talk.

KEY RESPONSIBILITIES

Client Project Delivery (~80% of working hours): Lead and support client-facing cybersecurity consulting engagements—bringing your technical expertise, attention to detail, and advisory skills to a variety of industries and service areas. In addition to executing project work, you’ll play a key role in fostering trust-based relationships that lead to long-term client success.

• Plan and manage day-to-day execution of client projects using strong project management practices, including defining scopes, tracking milestones, managing timelines, and escalating barriers early.
• Conduct cybersecurity maturity assessments, develop strategic roadmaps, and advise on risk reduction initiatives aligned with client priorities.
• Lead workshops, interviews, and working sessions with client project leads, stakeholders, and core team members—occasionally including senior executives.
• Deliver practical, right-sized solutions tailored to each client’s business and security objectives.
• Prepare clear, professional deliverables that simplify complex topics and drive informed action.
• Ensure all work products and client deliverables meet high standards of clarity, professionalism, and accuracy.
• Build and maintain strong working relationships with client stakeholders—serving as a trusted advisor during and between engagements.
• Demonstrate responsiveness, reliability, and a consistent commitment to helping clients achieve results.
• Share observations about unmet needs or opportunities for further impact with internal teams.

Internal Collaboration and Service Development (~15%): Contribute to internal knowledge sharing, team mentorship, and service innovation.

• Collaborate with peers to evolve and enhance service delivery playbooks, templates, and accelerators.
• Support internal project and delivery management by identifying dependencies, contributing to resource planning, and improving processes.
• Coach junior consultants and review work products to ensure quality and alignment.
• Identify and implement improvements that increase the efficiency, consistency, and scalability of services.
• Collaborate in a culture that values transparency, humility, and feedback—both giving and receiving—across all levels of the organization, including with firm leadership.

Professional Growth and Industry Engagement (~5%): Continue developing your expertise and representing the firm within the industry.

• Participate in industry conferences, working groups, or local cybersecurity events.
• Maintain and pursue relevant certifications or technical training.
• Bring back market insights and emerging trends to inform team strategy and innovation.

QUALIFICATIONS

Required:

• Minimum of 5 years of professional experience in cybersecurity, consulting, corporate, or related fields.
• Demonstrated success delivering client-facing security assessments, roadmaps, or advisory services.
• Strong communication skills—able to explain technical concepts to both technical and non-technical audiences clearly and confidently.
• Great attention to detail and a high standard for the quality, clarity, and professionalism of project deliverables.
• Ability to manage multiple active client projects (typically 3–5 core projects at a time), navigate time demands across stakeholders, and consistently deliver clear, high-quality work both independently and as part of a team.
• Solid organizational and time management skills with experience using project management principles to guide successful outcomes.
• A collaborative, team-first mindset with a desire to contribute to shared success.

Preferred (Not Required):

• Bachelor’s degree in Information Security, Computer Science, Risk Management, or a related field.
• One or more professional certifications (even if they have expired), such as:
  • CISSP (Certified Information Systems Security Professional)
  • CISM (Certified Information Security Manager)
  • CISA (Certified Information Systems Auditor)
  • PMP (Project Management Professional) or CSM (Certified Scrum Master)
• Familiarity with or hands-on experience in any of the following cybersecurity domains:
  • Risk Management and Third-Party Risk Management (TPRM)
  • Identity and Access Management (IAM)
  • Privileged Access Management (PAM)
  • Cloud Security
  • Security Program Design and Roadmapping
  • Workforce Awareness Programs
  • Vulnerability and Threat Management
  • Security Architecture
  • Privacy and Insider Threat
  • Governance, Risk, and Compliance (GRC)
  • Security Operations (SecOps) or Security Engineering
  • Infrastructure or systems administration background
  • Implementation of cybersecurity technologies or tools (e.g., IAM, PAM, endpoint security)

BENEFITS

• Competitive salary and team profit-sharing plan
• Comprehensive benefits package including:
  • Health, dental, and vision insurance (99% employer-paid premiums)
  • 401(k) with company match
  • Paid time off and company holidays
  • Flexible work schedule and hybrid environment
  • Professional development assistance
  • And more!

OTHER POSITION DETAILS

• Full-time, exempt
• Occasional travel (0–20%) for client workshops or conferences
• Monday – Friday, 8 hours/day with some flexibility as long as core working hours of 9am-4pm ET are covered