EMEA, Remote; full-time / permanent
In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business. We value the diverse backgrounds and perspectives that enable us to think globally. As part of One team, One Kroll, you’ll contribute to a supportive and collaborative work environment that empowers you to excel.
Through a combination of subject matter expertise, global research capabilities and flexible technology tools, Kroll helps clients take a risk-based approach toward meeting obligations or remediating failures regarding cybersecurity, privacy program maturity and related regulatory mandates. Our engagements include Virtual CISO, regulatory and compliance assessments, strategies and security program design, transactional due-diligence, framework assessments, expert testimony, privacy program building and a myriad of other advisory efforts.
RESPONSIBILITIES:
Kroll’s Cyber Risk team works on over 3,000 cases a year, including some of the most complex and highest profile matters in the world. With experts based around the world, supported by ground-breaking technology, we help protect our client’s data, people, operations and reputation with innovative assessments, investigations and intelligence. We are the only company in the world with the expertise and resources to deliver global, end-to-end cyber risk management, supporting organizations through every step of their journey toward cyber resilience.
We are looking for bright, inquisitive minds who are experienced in and passionate about cybersecurity consulting and advisory services. Our Advisory team responds to our clients’ needs and provide leadership and strategic guidance when and where it is needed the most.
- Support the delivery of high-quality cybersecurity consulting advice and services to a portfolio of clients of varying size, scope, and complexity.
- Perform gap analyses to assess Digital Operational Resilience Act (DORA) and NIS2 maturity as well as compliance against other relevant standards (such as NIST, ISO27001).
- Design of control frameworks across key resilience remediation areas such as governance, ICT Risk Management, Incident Reporting, Third Party Risk Management and Security Testing.
- Work with clients’ security and IT teams to guide implementation and strategic program maturity roadmaps
- Drive the implementation and/or enhancement of controls across key resilience areas including the uplift of relevant frameworks, policies and procedures and provide practical advice to support the operation of new processes.
- Design IT/cyber risk management frameworks and supporting programmes/processes to support the ongoing monitoring of compliance.
- Manage deliverables and expectations as well as review the quality of fieldwork and deliverables prepared by more junior team members to ensure deliverables meet high quality standards.
- Effectively communicate findings, reports, training and strategies to technical staff, executive leadership, legal counsel, and to both internal and external clients.
- Support the development of proposals and statements of work for Kroll clients.
- Work with sales and marketing teams to support the development of new business opportunities.
QUALIFICATIONS:
- Professional qualifications and proven experience in IT/ Information Security, Risk Management, Technology, Digital Resilience and/or Regulatory Compliance roles.
- Excellent interpersonal skills, drive, enthusiasm, and a passion for security.
- Good knowledge of the technology and cybersecurity regulatory and compliance landscape and requirements e.g. DORA, NIS2, GDPR, PRA/FCA or similar.
- Good knowledge of the security threat landscape, control frameworks and cyber resilience strategies.
- Ability to multi-task and prioritise, at times, conflicting priorities.
- Enjoys solving problems and designing solutions/capabilities leveraging people, processes and technologies.
- Ability to evaluate and connect business strategy, risk management, cyber strategy, policies and controls.
- Strong written and verbal communication and presentation skills, teamwork, and client relationship skills.
- A broad range of knowledge and understanding of wider commercial, business, and economic issues.
- Experience in client-facing roles and experience in engaging with senior stakeholders in organizations (desirable but not mandatory).
- Experience in high-quality delivery to tight timescales.
- A critical thinker and problem solver with attention to detail and adaptability.
- Outstanding organizational skills.
- Ability to multi-task, prioritize, and manage time effectively.
- Experience working with diverse teams
- Ability to travel up to 25% as required to support response activities
Above all, Kroll expects senior candidates to be strategically minded, excellent communicators, strong decision makers, intellectually curious and willing to immerse themselves in new challenges. In return, the company provides an environment where there is on-going training and unparalleled exposure to a wide range of clients, assignments and technologies.
Kroll is committed to creating an inclusive work environment. We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.
In order to be considered for a position at Kroll, you must formally apply via careers.kroll.com
#LI-Remote
#LI-TM1