Job Search

OUR GOAL: 
Treat our consultants and clients the way we would like others to treat us!
 
Interested in joining our team? Check out the opportunity below and apply today!
  
Our customer is seeking a Virtual Chief Information Security Officer (vCISO) or strategic cybersecurity advisory partner to augment existing cybersecurity leadership and operations. The engagement is intended to provide independent, strategic guidance rather than day‑to‑day security operations. This RFP reflects a proactive maturity and governance objective, not a response to a cybersecurity incident.

**Remote – part-time (likely CST zone)

Engagement Objectives
The selected individual will help the customer:

• Strengthen alignment between cybersecurity strategy and enterprise risk
• Provide an independent assessment and prioritization of cyber risks
• Improve architectural coherence across existing security controls
• Support executive management and the Board in oversight, decision‑making, and regulatory readiness

Scope of Services (Required)
​Individual should clearly describe their approach and deliverables across the following areas:

!) Cybersecurity Strategy & Roadmap

• Assess current cybersecurity posture and initiatives
• Advise on risk‑based prioritization of cybersecurity investments
• Support development or refinement of a multi‑year cybersecurity roadmap

2) Enterprise Security Architecture

• Provide guidance on defining a cohesive end‑to‑end security architecture
• Assess alignment with recognized frameworks (e.g., NIST, ISO)
• Identify opportunities to simplify, consolidate, or rationalize controls

3) Governance, Risk & Compliance

• Advise on cybersecurity governance and decision‑making models
• Support integration of cybersecurity into enterprise risk management (ERM)
• Provide input on regulatory, disclosure, and audit considerations

4) Third‑Party & Supply Chain Cyber Risk

• Assess maturity of third‑party cyber risk management
• Recommend scalable governance and oversight approaches
• Align cyber risk considerations with procurement, legal, and audit processes

5) Identity & Access Risk Advisory

• Advise on identity‑centric risk management and privileged access
• Support progression toward a Zero Trust-aligned model, as appropriate

6) OT / Manufacturing Security (Advisory)

• Provide strategic guidance on securing OT and manufacturing environments
• Support risk‑based prioritization of IT‑OT segmentation and monitoring

7) Board & Executive Engagement

• Prepare or review Board‑level cybersecurity materials
• Participate periodically in executive or Board discussions as an independent advisor

Explicitly Out of Scope
​Individual should note that this engagement does not include:

• SOC, MDR, or day‑to‑day security operations
• Direct management of staff or vendors
• Acting as incident commander during cyber incidents
• Tool resale as a primary engagement objective

Engagement Model Expectations

• Part‑time, advisory engagement
• Senior‑level consultant(s) with demonstrated Board‑level experience
• Independent, vendor‑agnostic guidance
• Collaborative engagement with IT, Cyber Defense Operations, Legal, and Audit
• Flexible scope aligned to evolving risk priorities

1. Deliverables (Indicative)

​Individual should specify which of the following they provide:

• Initial cybersecurity posture and maturity assessment
• Cybersecurity strategy and roadmap documentation
• Target‑state security architecture overview
• Periodic executive / Board‑ready briefings
• Written recommendations with prioritized actions

1. Evaluation Criteria

Individuals will be evaluated on:

• Depth of strategic cybersecurity expertise
• Experience supporting Boards and executive leadership
• Ability to operate independently of tool sales
• Practical understanding of manufacturing / OT environments
• Clarity, relevance, and usability of proposed deliverables
• Cultural and communication fit with leadership

1. Guiding Principle

Our customer seeks a vCISO partner that can elevate cybersecurity from effective operations to strategic, risk‑driven governance, while leveraging the strong foundation already in place.

Reference: 1051043 
  
Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every qualification. At Revel IT, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role, but your experience doesn’t align perfectly with every qualification in the description, we encourage you to apply anyway. You might be the right candidate for this or our other open roles!  

  
Revel IT is an Equal Opportunity Employer. Revel IT does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.  

#gdr4900