Senior Consultant - Cyber Security
Electric Mind
Job Description
Job Description
At Electric Mind, Engineering is where strategy meets action. Our team helps organizations cut through complexity—aligning business ambition with technology execution to unlock real, lasting change. You’ll work alongside curious, driven people tackling high-impact challenges for everyone from scaling startups to global enterprises. Each engagement is different, pushing you to learn, adapt, and grow.
Electric Mind’s Technology Practice brings together deep engineering expertise, modern delivery disciplines, and pragmatic architectural thinking to help clients execute complex, mission-critical transformation. We design and implement scalable, secure, high-impact technology solutions that accelerate business outcomes.
About the Role
We advise large U.S. banks, broker-dealers, and insurers on the most consequential
cyber security problems they face — the ones that show up in MRAs, MRIAs, Consent Orders.
As a Senior Consultant on our Cyber & Regulatory Remediation team, you will lead client-facing workstreams that translate regulator findings into defensible, executable remediation plans, and then drive those plans to closure alongside CISO, Risk, and Audit leadership.
This is not a generic GRC role. You will own the substance: writing remediation roadmaps that an OCC, FRB, or NY DFS examiner will accept, hardening the controls that fail under exam, and personally pushing technical workstreams — incident response, vulnerability and patch management, and identity — across the finish line.
What You'll Do- Lead regulatory remediation programs. Translate MRAs, MRIAs, Matters Requiring Attention, Consent Orders, and 500.17 (NY DFS) cybersecurity event notifications into prioritized remediation plans with defensible milestones, evidence requirements, and validation criteria.
- Run point with examiners and internal audit. Prepare clients for FRB, OCC, FDIC, NY DFS, SEC, and FFIEC exams and continuous-monitoring touchpoints. Draft response letters, walkthroughs, and evidence packages. Defend the work.
- Drive technical remediation, not just documentation. Partner with client CISO, IT Risk, Infrastructure, and IAM teams to actually close findings — not just status-report them. Push for engineering outcomes, not slideware.
- Run cyber incident response engagements. Lead or co-lead client-side IR for material events: containment strategy, forensic coordination, regulator and law-enforcement notification timing, executive and board communications, and post-incident remediation.
- Strengthen vulnerability and patch management programs. Assess current-state VM/patch operations, design risk-based SLAs, build exception governance, and operationalize tooling (Qualys, Tenable, Rapid7, Wiz, ServiceNow VR) so remediation actually happens at SLA.
- Lead IAM remediation workstreams. Drive privileged access management, joiner-mover-leaver, recertification, segregation-of-duties, and identity governance improvements. Reduce standing privilege and clean up the access debt regulators flag.
- Coach the team. Mentor analysts and consultants. Review their deliverables. Raise the bar on what “good” looks like in a remediation deliverable.
- Grow the practice. Contribute to proposals, thought leadership, and methodology assets. Identify follow-on work with existing clients.
You should be able to walk into a client room and speak credibly to at least three of the following frameworks and regimes — not from a study guide, but from having done the work:
- Federal Reserve Board (FRB) / SR 11-7 model risk, SR 20-24 and SR 21-14 cyber and operational resilience guidance, MRAs and MRIAs.
- OCC Heightened Standards (12 CFR Part 30, Appendix D) and OCC cyber risk expectations.
- NY DFS Part 500 — including the 2023 amendments: CISO reporting to the Board, governance, 72-hour incident notification, ransomware payment notification, asset inventory, MFA, encryption, and Class A company requirements.
- FFIEC Cybersecurity Assessment Tool, IT Examination Handbook (Information Security, Business Continuity, Operations).
- SEC Cybersecurity Disclosure Rules (Regulation S-K Item 106, Form 8-K Item 1.05) and Reg S-P amendments.
- NIST CSF 2.0, NIST 800-53, NIST 800-171; ISO/IEC 27001/27002; CIS Controls.
- SOX ITGC, PCI DSS 4.0, GLBA Safeguards Rule, and SOC 1/SOC 2 attestation work — nice-to-have.
Incident Management
- Hands-on experience leading or coordinating IR for ransomware, business email compromise, third-party breach, insider, and nation-state events.
- Working knowledge of NIST SP 800-61, MITRE ATT&CK, and the practical mechanics of containment, eradication, and recovery in complex enterprise environments.
- Comfort coordinating across legal, privacy, communications, forensics (Mandiant, CrowdStrike, Kroll, Unit 42), insurance, and regulators under time pressure.
- Experience drafting and defending incident notifications and regulator communications under NY DFS Part 500, SEC 8-K Item 1.05, GDPR, and state breach laws.
Vulnerability Remediation & Patch Management
- Demonstrated experience designing or remediating enterprise VM programs: scanning coverage, risk scoring (CVSS, EPSS, KEV), SLA design, exception governance, and metrics.
- Operational familiarity with Qualys, Tenable (Nessus / Tenable.io / Tenable.sc), Rapid7 InsightVM, Wiz, Microsoft Defender for Cloud, and ServiceNow Vulnerability Response.
- Patch management at scale across Windows, Linux, network, container, and cloud workloads — including the political work of getting business units to actually patch.
Identity & Access Management (IAM)
- Strong grasp of IAM domains: identity governance and administration (IGA), privileged access management (PAM), authentication and federation, joiner-mover-leaver, access certification, and SoD.
- Working experience with at least two of: SailPoint, Saviynt, Okta, Azure AD / Entra ID, Ping, CyberArk, BeyondTrust, Delinea.
- Practical experience reducing standing privilege, designing role models, and remediating common findings (orphaned accounts, toxic combinations, shared service accounts, weak recertification).
About Electric Mind
Electric Mind is a fast-growing, AI-native advisory and digital engineering firm built for those who want to shape the future, not just watch it happen. We blend premium strategy expertise with cutting-edge AI-centric engineering to solve complex, meaningful problems for industry-leading clients.
We pride ourselves on a high-touch delivery model and a culture that values diverse talent, innovation, and true client partnership — creating an environment where your ideas matter and your impact is visible.
If you’re looking for a place where you can grow fast, collaborate with exceptional teammates, and help build a company scaling its capabilities and global footprint at speed — Electric Mind is the place to ignite your career. The future is bright!
For more info on Electric Mind, check out our Careers Page and Instagram.
Electric Mind is committed to diversity in the workplace. We are an inclusive employer and welcome and encourage applications from all qualified candidates. Applicants’ needs will be accommodated during our recruitment and selection process so please advise us if you require accommodation.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
$155.35k - $190.85k
...best version of themselves. As a technology‑enabled business, our approach to security operations must evolve and grow alongside our services and members. We are looking for a Senior Cyber Analyst with a diverse set of skills that can thrive in a challenging, fast‑paced...SeniorLocal area- Senior Consultant - Epic Security Analyst - Remote Join to apply for the Senior Consultant - Epic Security Analyst - Remote role at Nordic Global Senior... ...ago United States $86,000.00-$148,000.00 3 weeks ago Cyber Security Consultant - Saudi Region United States $86,000....SeniorRemote jobFull timeContract workLocal area
- ...Under the direction of the Manager, Security Outreach, the Senior Cybersecurity Analyst – Infrastructure Security & Outreach is responsible for advancing... ..., technical expertise, and program management in cyber security with a focus on Operational Technology (OT), Information...SeniorContract workWork at officeLocal areaImmediate start
$71.64k - $124.18k
...1,640 - $124,176 Department: Information Security Flexible Time Off: 20 Days Schedule: Full... ...Experian, and is a division of Experian's Cyber Fusion Center (CFC), which is organized... ...Security Office (EGSO). As a Cyber Defense Senior Analyst, you will perform in-depth...SeniorHourly payFull timeWork at officeLocal areaRemote workFlexible hoursShift work- Richemont is seeking a Senior Associate in Cyber Incident Response to protect against cyber threats and analyze security events in New York. The role involves incident management, detailed analysis of cybersecurity threats, and collaboration with IT and security teams to...Senior
£60k per year
Senior Cyber Security Analyst | ISO 27001 | £60,000 per annum | Remote A Cyber Security Risk Analyst is needed for a leading compliance and energy solutions company who are looking for support for their rapid growth and transformation with the mission to enhance energy...SeniorRemote job- ...Expertise: Proficiencyincryptologic support,cybersecurity operations, andsystem administration. Familiarity with cyber defense tools, network security, and incident response methodologies. Strong understanding of cyber threat analysis and mitigation strategies. Skills...SeniorLocal area
- ...DotWave Solutions LLC Senior Cybersecurity Consultant Remote·Contractor Company website Apply for Senior... ...knowledge needed to combat evolving cyber threats effectively. Description Senior... ...adapt to different client environments Security clearance (active or eligible) is a...SeniorContract workTemporary workFor contractorsRemote workFlexible hours
- Wavestone is seeking cybersecurity consultants in the United States to join their Cybersecurity Global Practice. The role involves leading client engagements, developing cybersecurity strategies, and mentoring junior staff in a dynamic consulting environment. The ideal...Senior
- Palo Alto Networks is seeking a Solutions Consultant to provide technical leadership in customer security transformations while ensuring value realization from investments. This role requires 6+ years in pre-sales engineering, expertise in networking and cybersecurity,...Senior
$128k
A global management consulting group in New York is seeking a Cybersecurity Consultant. You will manage Cybersecurity projects, develop client relationships, and lead a team of experts. Candidates should have a degree in Cybersecurity and at least 3 years of experience...SeniorFlexible hours$128k
...generation, global management consulting group. Founded in 1999, we... ..., Data Protection, Offensive Security, Resilience and Training. Key... ...reference and relay for the Manager/Senior Manager regarding the follow-... ..., benchmarks and PoCs of Cyber solutions, and active...SeniorFull timeWork at officeWorldwideFlexible hours$120k - $150k
...N A, Inc. is seeking an experienced Cybersecurity Consultant who is bilingual in Japanese for our North America... ...salary ranges from $120K to $150K plus benefits. The Senior Consultant will advise executives, assess cyber risk, strengthen governance programs, and develop strategic...SeniorWork at office- Senior Cybersecurity Analyst (Threat & Vulnerability) Department & Reporting Line: Information Security Department - Incident Response. Reports to the Cybersecurity Engineering Manager or SOC Manager. Position Summary/Purpose: The Senior Cybersecurity Analyst (Threat &...SeniorContract work
$174k - $253k
...another ML field. 1 year of experience in security engineering, or in secure software... ...identification of AI opportunities across Cloud Cyber Security Engineering (CCSE); including... ...multiple teams, vet system designs, and mentor senior engineers to help them grow into...SeniorTemporary work- Security Operations Center (SOC) Cyber Threat Senior Analyst (Assistant Vice President) Job Req Id: 26932866 Location: Singapore, Singapore, Singapore Job Type: Hybrid Posted: Mar. 24, 2026 Job Overview The Security Operations Center (SOC) Cyber Threat Analyst will be...SeniorShift work
$80.5k - $159.3k
Crowe is seeking a Cybersecurity Senior Consultant in New York, NY, to help organizations navigate a complex regulatory environment and evolving... ...risk assessments, evaluating IT controls, and implementing security programs. Ideal candidates will have experience in...Senior- A dynamic consulting firm in the United States seeks a Senior Associate for its Cyber Security & Data Privacy (CSDP) group. This role involves leading client engagements to implement cybersecurity programs and managing daily compliance operations. Ideal candidates will...Senior
$180k - $210k
...applications and next steps. Our partner is looking for a Senior Technical Consultant - Network Security Operations based in United States. This role offers... ...investigation methodologies, including MITRE ATT&CK, Cyber Kill Chain, NIST Cybersecurity Framework, and CIS...SeniorRemote work- A leading utility provider in Pennsylvania seeks a GRC Cybersecurity Senior Analyst to ensure compliance with regulatory obligations. This role involves collaboration with various departments to implement governance and risk management processes. The ideal candidate has...Senior
- Remote Senior Cybersecurity & Compliance Consultant (HIPAA, NIST & SOC 2) We are seeking a Remote Senior Cybersecurity & Compliance Consultant (HIPAA, NIST... ...on cybersecurity, risk management, compliance, and security best practices while supporting clients through assessments...SeniorRemote jobFull timeWork at office
- Cyber Security Engineer IV (Senior Security Analyst) Location: Basking ridge, NJ Duration: 10Months+ Extension Hourly Rate: Depending on Experience (DOE) Work Authorization: Bachelor’s degree in computer science or related fields. Eight or more years of relevant...SeniorHourly payPermanent employmentContract workWork experience placementLocal area
- Job Summary The Global Cybersecurity Senior GRC Analyst plays a critical role in ensuring that the organization operates within its regulatory... ...., peer reviews, audits, etc.). Track key risk indicators and security metrics. Risk Management Assist with conducting gap...SeniorFor contractors
- About the Role Sigma is seeking a Senior Security Engineer to join our growing Cyber Security team. As a Senior Security Engineer, you will advance Sigma’s Security strategy by shaping and evolving security architecture in alignment with business objectives. As a Senior...SeniorFull timeWork at officeFlexible hours
$195k - $262.7k
A financial technology company is seeking a Sr. Manager, Cyber Threat Researcher to leverage cyber threat intelligence. The position involves creating detection mechanisms and maintaining expertise in current threat landscapes. Ideal candidates should have extensive experience...SeniorRemote work$80.5k - $159.3k
Job Description As a Cybersecurity Senior Consultant, you will help organizations navigate an evolving threat landscape and a complex regulatory... ...across industries to assess cybersecurity posture, design security programs, evaluate IT controls, and implement transformative...SeniorLocal areaWorldwide$120k - $150k
MAG Aerospace is seeking a mid to senior level Endpoint Engineer in Idaho to manage and secure devices within a Microsoft GCC High environment. The role demands strong experience in Microsoft Intune along with skills in vulnerability management and endpoint governance....Senior- Valiant Solutions is looking for a Senior Cyber Threat Analyst to enhance its cybersecurity team. The role involves monitoring security events, collaborating with teams, and developing mitigation strategies to combat threats. The position is based in the United States...SeniorRemote job
$185k - $260k
...A dynamic cybersecurity firm is seeking a Senior/Staff Product Manager to lead the strategy and development of cybersecurity offerings for MSPs and MSSPs. This role involves product strategy, multi-tenant architecture, and collaboration with various teams. Candidates...SeniorRemote work$130k - $180k
...something meaningful — and we’re looking for big thinkers and humble warriors to join us. About the Role We're looking for a Senior Security Engineer to own security at CurbWaste — our first dedicated hire in this space. We've grown fast, closed our Series B, and we're...SeniorWork at officeLocal areaFlexible hours3 days per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Consultant - Cyber Security. Be the first to apply!
- information security consultant New York, NY
- remote cyber security analyst New York, NY
- cyber security analyst New York, NY
- senior trade analyst New York, NY
- senior app developer New York, NY
- senior customer service advisor New York, NY
- senior international account manager New York, NY
- senior product manager mobile New York, NY
- senior magento developer New York, NY
- senior quantitative risk analyst New York, NY

