Directly manage and mentor the Security Advisory & Compliance Associates, Consultant, and Sr. Consultant roles.
Set clear performance expectations, conduct regular 1:1s, and complete performance reviews.
Support career development, skill progression, and certification attainment across the Security Advisory & Compliance team.
Ensure appropriate workload distribution, capacity planning, and role alignment.
Oversee delivery of all Security Advisory & Compliance services, including audits, risk assessments, policy development, roadmap execution, and vCISO-aligned engagements.
Act as an escalation point for complex client issues, delivery risks, or scope challenges.
Partner with Service Delivery and Security Operations leadership to ensure alignment across teams.
Establish and enforce standardized Security Advisory & Compliance methodologies, templates, workflows, and documentation standards.
Review and approve high-impact deliverables, including strategic roadmaps, executive reports, and policy frameworks.
Ensure audit-readiness, defensibility, and consistency across all GRC engagements.
Drive continuous improvement of Security Advisory & Compliance processes, tooling usage, and reporting practices.
Define and evolve the Security Advisory & Compliance service catalog, delivery models, and engagement structure.
Identify opportunities to mature offerings, improve efficiency, and enhance client value.
Partner with leadership on service pricing, packaging, and scalability considerations.
Support sales and pre-sales efforts through solution design, scoping, and subject-matter expertise as needed.
Support or lead executive-level client interactions, including escalations and strategic discussions.
Ensure consistent, high-quality executive communication across QBRs, reports, and advisory engagements.
Maintain strong relationships with key stakeholders to reinforce Integris trusted advisor role.
Provide oversight of vulnerability management, incident governance, and remediation prioritization practices.
Ensure client risk decisions, policy approvals, and governance actions are documented and defensible.
Track and manage Security Advisory & Compliance team performance against KPIs, SLAs, and utilization targets.
Ensure accurate time tracking, documentation, and reporting across the team.
Maintain required training and certifications as defined by management.
Requirements
Bachelors degree in business, information systems, cybersecurity, or a related field or equivalent education/experience
Must have, or complete, one or more of the following as defined by management: CISA, CISSP, CRISC, ISC2 CGRC, ISO 27001 Lead Implementer/Lead Auditor (or equivalent), or equivalent demonstrated experience
5+ years of experience in GRC, cybersecurity, risk management, audit, or advisory roles
3+ years of experience leading or managing teams in a consulting, security, or compliance environment
Mastery of risk management and cybersecurity frameworks
Deep understanding of regulatory and compliance drivers relevant to SMB and mid-market organizations
Strong understanding of vulnerability management, incident response governance, and audit-readiness
Proven ability to lead client-facing teams and manage competing priorities
Expertise in executive communication, escalation management, and stakeholder alignment
Proficiency using GRC platforms, Microsoft 365, and understanding of security tooling outputs.