Cyber Strategy & Advisory - Level 4 - Remote

Remote position
Job Title: Cyber Strategy & Advisory - Level 4

Role Overview
Seeking a highly skilled Cybersecurity Strategy & Advisory professional to lead and deliver strategic security initiatives that align with business objectives, regulatory requirements, and evolving threat landscapes. This role focuses on defining enterprise security strategy, governance models, risk management frameworks, and transformation roadmaps while advising senior leadership on cybersecurity investments and resilience

Key Responsibilities 1. Cybersecurity Strategy Development

• Define and implement enterprise-wide cybersecurity strategies aligned with business goals
• Develop multi-year security roadmaps and capability maturity models
• Align security initiatives with frameworks such as:
• NIST CSF
• ISO 27001
• CIS Controls

.

2. Risk Management & Governance

• Establish and manage cyber risk management frameworks and registers
• Conduct enterprise-level risk assessments, threat modelling, and impact analysis
• Support board-level reporting on cyber risk posture and key risk indicators (KRIs)
• Define cybersecurity governance structures and operating models

3. Security Advisory & Consulting

• Provide strategic advisory to CIOs, CISOs, and business leaders
• Translate cybersecurity risks into business impact and financial terms
• Support M&A security due diligence, third-party risk management, and regulatory compliance
• Act as a trusted advisor during major transformation programs (cloud, digital, AI)

.

4. Security Transformation & Programs

• Lead large-scale cybersecurity transformation initiatives such as:
• Zero Trust adoption
• Cloud security modernization
• Identity and Access Management (IAM) transformation
• SOC modernization (AI-driven SOC, XDR)
• Define target-state architectures and implementation roadmaps

Required Skills & Experience
Experience required 12 to 15 of Years in Cybersecurity

Skills Required
Strong understanding of:

• Cybersecurity frameworks and standards
• Enterprise risk management
• Security architecture and controls

Experience in:

• Strategy development & roadmap creation
• Executive-level communication & advisory
• Security operating model design

Certifications (Preferred)

• CISA, CISM, CISSP
• CRISC (highly relevant for risk-focused roles)
• ISO 27001 Lead Implementer / Auditor

Soft Skills & Attributes

• Ability to operate in high-pressure incident scenarios
• Strong analytical and investigative mindset
• Excellent stakeholder communication, including interaction with legal counsel and executives
• Ability to bridge offensive, defensive, and intelligence domains
• Strong documentation and reporting skills