Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Consultant - Cyber Security

Electric Mind

Job Description

Job Description

At Electric Mind, Engineering is where strategy meets action. Our team helps organizations cut through complexity—aligning business ambition with technology execution to unlock real, lasting change. You’ll work alongside curious, driven people tackling high-impact challenges for everyone from scaling startups to global enterprises. Each engagement is different, pushing you to learn, adapt, and grow.  

Electric Mind’s Technology Practice brings together deep engineering expertise, modern delivery disciplines, and pragmatic architectural thinking to help clients execute complex, mission-critical transformation. We design and implement scalable, secure, high-impact technology solutions that accelerate business outcomes.  

About the Role

 

We advise large U.S. banks, broker-dealers, and insurers on the most consequential 

cyber security problems they face — the ones that show up in MRAs, MRIAs, Consent Orders.

 

As a Senior Consultant on our Cyber & Regulatory Remediation team, you will lead client-facing workstreams that translate regulator findings into defensible, executable remediation plans, and then drive those plans to closure alongside CISO, Risk, and Audit leadership.

 

This is not a generic GRC role. You will own the substance: writing remediation roadmaps that an OCC, FRB, or NY DFS examiner will accept, hardening the controls that fail under exam, and personally pushing technical workstreams — incident response, vulnerability and patch management, and identity — across the finish line.

What You'll Do

  • Lead regulatory remediation programs.  Translate MRAs, MRIAs, Matters Requiring Attention, Consent Orders, and 500.17 (NY DFS) cybersecurity event notifications into prioritized remediation plans with defensible milestones, evidence requirements, and validation criteria.
  • Run point with examiners and internal audit.  Prepare clients for FRB, OCC, FDIC, NY DFS, SEC, and FFIEC exams and continuous-monitoring touchpoints. Draft response letters, walkthroughs, and evidence packages. Defend the work.
  • Drive technical remediation, not just documentation.  Partner with client CISO, IT Risk, Infrastructure, and IAM teams to actually close findings — not just status-report them. Push for engineering outcomes, not slideware.
  • Run cyber incident response engagements.  Lead or co-lead client-side IR for material events: containment strategy, forensic coordination, regulator and law-enforcement notification timing, executive and board communications, and post-incident remediation.
  • Strengthen vulnerability and patch management programs.  Assess current-state VM/patch operations, design risk-based SLAs, build exception governance, and operationalize tooling (Qualys, Tenable, Rapid7, Wiz, ServiceNow VR) so remediation actually happens at SLA.
  • Lead IAM remediation workstreams.  Drive privileged access management, joiner-mover-leaver, recertification, segregation-of-duties, and identity governance improvements. Reduce standing privilege and clean up the access debt regulators flag.
  • Coach the team.  Mentor analysts and consultants. Review their deliverables. Raise the bar on what “good” looks like in a remediation deliverable.
  • Grow the practice.  Contribute to proposals, thought leadership, and methodology assets. Identify follow-on work with existing clients.
Required Regulatory Expertise

You should be able to walk into a client room and speak credibly to at least three of the following frameworks and regimes — not from a study guide, but from having done the work:

  • Federal Reserve Board (FRB) / SR 11-7 model risk, SR 20-24 and SR 21-14 cyber and operational resilience guidance, MRAs and MRIAs.
  • OCC Heightened Standards (12 CFR Part 30, Appendix D) and OCC cyber risk expectations.
  • NY DFS Part 500 — including the 2023 amendments: CISO reporting to the Board, governance, 72-hour incident notification, ransomware payment notification, asset inventory, MFA, encryption, and Class A company requirements.
  • FFIEC Cybersecurity Assessment Tool, IT Examination Handbook (Information Security, Business Continuity, Operations).
  • SEC Cybersecurity Disclosure Rules (Regulation S-K Item 106, Form 8-K Item 1.05) and Reg S-P amendments.
  • NIST CSF 2.0, NIST 800-53, NIST 800-171; ISO/IEC 27001/27002; CIS Controls.
  • SOX ITGC, PCI DSS 4.0, GLBA Safeguards Rule, and SOC 1/SOC 2 attestation work — nice-to-have.
Required Technical & Operational Expertise Cyber

Incident Management

  • Hands-on experience leading or coordinating IR for ransomware, business email compromise, third-party breach, insider, and nation-state events.
  • Working knowledge of NIST SP 800-61, MITRE ATT&CK, and the practical mechanics of containment, eradication, and recovery in complex enterprise environments.
  • Comfort coordinating across legal, privacy, communications, forensics (Mandiant, CrowdStrike, Kroll, Unit 42), insurance, and regulators under time pressure.
  • Experience drafting and defending incident notifications and regulator communications under NY DFS Part 500, SEC 8-K Item 1.05, GDPR, and state breach laws.

Vulnerability Remediation & Patch Management

  • Demonstrated experience designing or remediating enterprise VM programs: scanning coverage, risk scoring (CVSS, EPSS, KEV), SLA design, exception governance, and metrics.
  • Operational familiarity with Qualys, Tenable (Nessus / Tenable.io / Tenable.sc), Rapid7 InsightVM, Wiz, Microsoft Defender for Cloud, and ServiceNow Vulnerability Response.
  • Patch management at scale across Windows, Linux, network, container, and cloud workloads — including the political work of getting business units to actually patch.

Identity & Access Management (IAM)

  • Strong grasp of IAM domains: identity governance and administration (IGA), privileged access management (PAM), authentication and federation, joiner-mover-leaver, access certification, and SoD.
  • Working experience with at least two of: SailPoint, Saviynt, Okta, Azure AD / Entra ID, Ping, CyberArk, BeyondTrust, Delinea.
  • Practical experience reducing standing privilege, designing role models, and remediating common findings (orphaned accounts, toxic combinations, shared service accounts, weak recertification).

About Electric Mind  

Electric Mind is a fast-growing, AI-native advisory and digital engineering firm built for those who want to shape the future, not just watch it happen. We blend premium strategy expertise with cutting-edge AI-centric engineering to solve complex, meaningful problems for industry-leading clients.  

We pride ourselves on a high-touch delivery model and a culture that values diverse talent, innovation, and true client partnership — creating an environment where your ideas matter and your impact is visible.  

If you’re looking for a place where you can grow fast, collaborate with exceptional teammates, and help build a company scaling its capabilities and global footprint at speed — Electric Mind is the place to ignite your career. The future is bright! 

For more info on Electric Mind, check out our Careers Page and Instagram.

Electric Mind is committed to diversity in the workplace. We are an inclusive employer and welcome and encourage applications from all qualified candidates. Applicants’ needs will be accommodated during our recruitment and selection process so please advise us if you require accommodation.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Consultant - Cyber Security in New York, NY vacancy
  • $155.35k - $190.85k

     ...best version of themselves. As a technology‑enabled business, our approach to security operations must evolve and grow alongside our services and members. We are looking for a Senior Cyber Analyst with a diverse set of skills that can thrive in a challenging, fast‑paced... 
    Senior
    Local area

    Peloton

    New York, NY
    1 day ago
  • Senior Consultant - Epic Security Analyst - Remote Join to apply for the Senior Consultant - Epic Security Analyst - Remote role at Nordic Global Senior...  ...ago United States $86,000.00-$148,000.00 3 weeks ago Cyber Security Consultant - Saudi Region United States $86,000.... 
    Senior
    Remote job
    Full time
    Contract work
    Local area

    Nordic Global

    New York, NY
    4 days ago
  •  ...Under the direction of the Manager, Security Outreach, the Senior Cybersecurity Analyst – Infrastructure Security & Outreach is responsible for advancing...  ..., technical expertise, and program management in cyber security with a focus on Operational Technology (OT), Information... 
    Senior
    Contract work
    Work at office
    Local area
    Immediate start

    Northeast Power Coordinating Council

    New York, NY
    4 days ago
  • $71.64k - $124.18k

     ...1,640 - $124,176 Department: Information Security Flexible Time Off: 20 Days Schedule: Full...  ...Experian, and is a division of Experian's Cyber Fusion Center (CFC), which is organized...  ...Security Office (EGSO). As a Cyber Defense Senior Analyst, you will perform in-depth... 
    Senior
    Hourly pay
    Full time
    Work at office
    Local area
    Remote work
    Flexible hours
    Shift work

    Experian

    New York, NY
    2 days ago
  • Richemont is seeking a Senior Associate in Cyber Incident Response to protect against cyber threats and analyze security events in New York. The role involves incident management, detailed analysis of cybersecurity threats, and collaboration with IT and security teams to... 
    Senior

    Richemont

    New York, NY
    3 days ago
  • £60k per year

    Senior Cyber Security Analyst | ISO 27001 | £60,000 per annum | Remote A Cyber Security Risk Analyst is needed for a leading compliance and energy solutions company who are looking for support for their rapid growth and transformation with the mission to enhance energy... 
    Senior
    Remote job

    VirtueTech Recruitment Group

    New York, NY
    4 days ago
  •  ...Expertise: Proficiencyincryptologic support,cybersecurity operations, andsystem administration. Familiarity with cyber defense tools, network security, and incident response methodologies. Strong understanding of cyber threat analysis and mitigation strategies. Skills... 
    Senior
    Local area

    Peraton

    New York, NY
    1 day ago
  •  ...DotWave Solutions LLC Senior Cybersecurity Consultant Remote·Contractor Company website Apply for Senior...  ...knowledge needed to combat evolving cyber threats effectively. Description Senior...  ...adapt to different client environments Security clearance (active or eligible) is a... 
    Senior
    Contract work
    Temporary work
    For contractors
    Remote work
    Flexible hours

    Dotwave-Solutions

    New York, NY
    3 days ago
  • Wavestone is seeking cybersecurity consultants in the United States to join their Cybersecurity Global Practice. The role involves leading client engagements, developing cybersecurity strategies, and mentoring junior staff in a dynamic consulting environment. The ideal... 
    Senior

    Wavestone

    New York, NY
    5 days ago
  • Palo Alto Networks is seeking a Solutions Consultant to provide technical leadership in customer security transformations while ensuring value realization from investments. This role requires 6+ years in pre-sales engineering, expertise in networking and cybersecurity,... 
    Senior

    Palo Alto Networks

    New York, NY
    2 days ago
  • $128k

    A global management consulting group in New York is seeking a Cybersecurity Consultant. You will manage Cybersecurity projects, develop client relationships, and lead a team of experts. Candidates should have a degree in Cybersecurity and at least 3 years of experience... 
    Senior
    Flexible hours

    Sia

    New York, NY
    4 days ago
  • $128k

     ...generation, global management consulting group. Founded in 1999, we...  ..., Data Protection, Offensive Security, Resilience and Training. Key...  ...reference and relay for the Manager/Senior Manager regarding the follow-...  ..., benchmarks and PoCs of Cyber solutions, and active... 
    Senior
    Full time
    Work at office
    Worldwide
    Flexible hours

    SIA

    New York, NY
    3 days ago
  • $120k - $150k

     ...N A, Inc. is seeking an experienced Cybersecurity Consultant who is bilingual in Japanese for our North America...  ...salary ranges from $120K to $150K plus benefits. The Senior Consultant will advise executives, assess cyber risk, strengthen governance programs, and develop strategic... 
    Senior
    Work at office

    Pasona N A, Inc.

    New York, NY
    4 days ago
  • Senior Cybersecurity Analyst (Threat & Vulnerability) Department & Reporting Line: Information Security Department - Incident Response. Reports to the Cybersecurity Engineering Manager or SOC Manager. Position Summary/Purpose: The Senior Cybersecurity Analyst (Threat &... 
    Senior
    Contract work

    Charter Global

    New York, NY
    4 days ago
  • $174k - $253k

     ...another ML field. 1 year of experience in security engineering, or in secure software...  ...identification of AI opportunities across Cloud Cyber Security Engineering (CCSE); including...  ...multiple teams, vet system designs, and mentor senior engineers to help them grow into... 
    Senior
    Temporary work

    Google

    New York, NY
    4 days ago
  • Security Operations Center (SOC) Cyber Threat Senior Analyst (Assistant Vice President) Job Req Id: 26932866 Location: Singapore, Singapore, Singapore Job Type: Hybrid Posted: Mar. 24, 2026 Job Overview The Security Operations Center (SOC) Cyber Threat Analyst will be... 
    Senior
    Shift work

    Citi

    New York, NY
    4 days ago
  • $80.5k - $159.3k

    Crowe is seeking a Cybersecurity Senior Consultant in New York, NY, to help organizations navigate a complex regulatory environment and evolving...  ...risk assessments, evaluating IT controls, and implementing security programs. Ideal candidates will have experience in... 
    Senior

    Crowe

    New York, NY
    4 days ago
  • A dynamic consulting firm in the United States seeks a Senior Associate for its Cyber Security & Data Privacy (CSDP) group. This role involves leading client engagements to implement cybersecurity programs and managing daily compliance operations. Ideal candidates will... 
    Senior

    Riveron

    New York, NY
    4 days ago
  • $180k - $210k

     ...applications and next steps. Our partner is looking for a Senior Technical Consultant - Network Security Operations based in United States. This role offers...  ...investigation methodologies, including MITRE ATT&CK, Cyber Kill Chain, NIST Cybersecurity Framework, and CIS... 
    Senior
    Remote work

    Jobgether

    New York, NY
    5 days ago
  • A leading utility provider in Pennsylvania seeks a GRC Cybersecurity Senior Analyst to ensure compliance with regulatory obligations. This role involves collaboration with various departments to implement governance and risk management processes. The ideal candidate has... 
    Senior

    UGI Utilities, Inc.

    New York, NY
    4 days ago
  • Remote Senior Cybersecurity & Compliance Consultant (HIPAA, NIST & SOC 2) We are seeking a Remote Senior Cybersecurity & Compliance Consultant (HIPAA, NIST...  ...on cybersecurity, risk management, compliance, and security best practices while supporting clients through assessments... 
    Senior
    Remote job
    Full time
    Work at office

    Thehelloteam

    New York, NY
    4 days ago
  • Cyber Security Engineer IV (Senior Security Analyst) Location: Basking ridge, NJ Duration: 10Months+ Extension Hourly Rate: Depending on Experience (DOE) Work Authorization: Bachelor’s degree in computer science or related fields. Eight or more years of relevant... 
    Senior
    Hourly pay
    Permanent employment
    Contract work
    Work experience placement
    Local area

    Digital Technologies, LLC

    New York, NY
    3 days ago
  • Job Summary The Global Cybersecurity Senior GRC Analyst plays a critical role in ensuring that the organization operates within its regulatory...  ...., peer reviews, audits, etc.). Track key risk indicators and security metrics. Risk Management Assist with conducting gap... 
    Senior
    For contractors

    UGI Utilities, Inc.

    New York, NY
    4 days ago
  • About the Role Sigma is seeking a Senior Security Engineer to join our growing Cyber Security team. As a Senior Security Engineer, you will advance Sigma’s Security strategy by shaping and evolving security architecture in alignment with business objectives. As a Senior... 
    Senior
    Full time
    Work at office
    Flexible hours

    Role, Inc.

    New York, NY
    4 days ago
  • $195k - $262.7k

    A financial technology company is seeking a Sr. Manager, Cyber Threat Researcher to leverage cyber threat intelligence. The position involves creating detection mechanisms and maintaining expertise in current threat landscapes. Ideal candidates should have extensive experience... 
    Senior
    Remote work

    DEV

    New York, NY
    1 day ago
  • $80.5k - $159.3k

    Job Description As a Cybersecurity Senior Consultant, you will help organizations navigate an evolving threat landscape and a complex regulatory...  ...across industries to assess cybersecurity posture, design security programs, evaluate IT controls, and implement transformative... 
    Senior
    Local area
    Worldwide

    Crowe

    New York, NY
    4 days ago
  • $120k - $150k

    MAG Aerospace is seeking a mid to senior level Endpoint Engineer in Idaho to manage and secure devices within a Microsoft GCC High environment. The role demands strong experience in Microsoft Intune along with skills in vulnerability management and endpoint governance.... 
    Senior

    MAG Aerospace

    New York, NY
    2 days ago
  • Valiant Solutions is looking for a Senior Cyber Threat Analyst to enhance its cybersecurity team. The role involves monitoring security events, collaborating with teams, and developing mitigation strategies to combat threats. The position is based in the United States... 
    Senior
    Remote job

    Valiant Solutions

    New York, NY
    2 days ago
  • $185k - $260k

     ...A dynamic cybersecurity firm is seeking a Senior/Staff Product Manager to lead the strategy and development of cybersecurity offerings for MSPs and MSSPs. This role involves product strategy, multi-tenant architecture, and collaboration with various teams. Candidates... 
    Senior
    Remote work

    Horizon3.ai

    New York, NY
    1 day ago
  • $130k - $180k

     ...something meaningful — and we’re looking for big thinkers and humble warriors to join us. About the Role We're looking for a Senior Security Engineer to own security at CurbWaste — our first dedicated hire in this space. We've grown fast, closed our Series B, and we're... 
    Senior
    Work at office
    Local area
    Flexible hours
    3 days per week

    CurbWaste

    New York, NY
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Consultant - Cyber Security. Be the first to apply!