Work in Iowa Green Jobs

Job Information

Ankura Senior Director, Risk, Forensics & Compliance (Risk Management) in Iowa

Ankura is a team of excellence founded on innovation and growth.

This position supports the Risk Management group within the Risk, Forensics & Compliance practice - one of six practices focused on client delivery services across the Firm.

Regulatory Compliance and Information Technology Risk Management Solutions at Ankura:

Regulatory Compliance and Information Technology Risk Management

Ankura approaches IT risk management by leveraging enterprise-level crisis avoidance best practices and business continuity management (BCM) frameworks that provide comprehensive consideration of crisis recognition, characterization, escalation, management, and recovery, with intake of lessons learned for continuous improvement. Each type of tailored planning includes part of the tool kit for response and recovery. Our specialized team — with combined backgrounds in system security, incident response, operational continuity and recovery, and regulatory compliance consulting — works with clients across multiple regulated industries to address IT risks, threats, and incident scenarios by identifying risk and fortifying infrastructure; meeting compliance objectives; building security into applications and processes; investigating cybersecurity incidents; providing incident response, crisis management, business continuity, and disaster recovery plans and strategies; and maturing their overall security readiness posture.

Compliance Advisory and Assurance

Complying with complex security and privacy regulations and standards has become a consensus obligation that requires the buy-in of an organization’s compliance, security, legal, and internal audit department. IT systems security and related compliance mandates are board governance issue that create director and officer liability risk. Regulators are imposing more prescriptive rules, and noncompliance now carries significant punitive consequences. With data breaches of “crown jewel” digital assets now seeming routine and inevitable, stakeholders, insurers, and regulators are convinced that not enough is being done to secure these assets. Independent assessment, remediation, and assurance services from Ankura can be part of a prudent approach to cybersecurity compliance in these high-risk times.

About the Opportunity:

Ankura is looking for a technically expert, high initiative IT and data security professional with 10+ years of experience to join its growing Risk, Forensics & Compliance advisory practice and support its Risk Management and Regulatory Compliance consultancy. Each engagement in this issue space almost always includes information security control elements that require relevant technical subject matter expertise. Ideal candidates have experience and expertise securing, assessing, testing, and configuring cyber and data security in information technology networks for complex, global organizations. Additionally, successful candidates will have experience with approaching IT risk management from an enterprise crisis and business continuity management (BCM) framework perspective.

Ankura provides the opportunity to work collaboratively on small, diverse teams with skilled, intelligent, driven, and successful individuals. Ankura is focused on hiring people whom will serve as the foundation of a growing firm dedicated to its people, culture, and delivering high quality service to our clients.

Essential Duties & Responsibilities:

As a Senior Director, you will be a key member of the client engagement team and provide subject matter expertise regarding information security and related risks and controls. You will be responsible for managing and performing substantive information security risk assessment, mitigation, and advisory projects and conveying your results to internal and external project leadership. Responsibilities will include, but will not be limited to, the following:

  • Evaluate and report on IT systems, Cyber, and Data security controls based upon recognized frameworks, regulations, and/or mitigation requirements such as NIST Framework, HIPAA Security Rule, PCI Data Security Standard, ISO Standards, National Security Agreements, etc.

  • Serve as team technical Subject Matter Expert regarding intersection of cyber- and data-security with national security, technology, export control, and supply and network integrity

  • Develop a deep understanding of each client’s organization, information, and controls environment to facilitate identifying, analyzing and addressing cyber- and data-related threats and risks

  • Actively engage with, understand, and integrate learning from the most current best practices, thought literature, and public reporting regarding information technologies, security, and risk trends

  • Work with Risk Management leadership team to develop and execute on BD plans

  • Assist in creating reusable material for the practice with scalability of the team

  • Support multiple client engagements and manage project economics

  • Generate consistent, concise, accurate reporting throughout project lifecycles

  • Develop, assess, and enhance information security policies and procedures and provide guidance to clients regarding best practices

  • Develop prioritized information security project plans tailored to each engagement

Basic Qualifications:

  • Bachelor’s Degree in MIS, CIS, Accounting, Finance, Business Administration, Economics or Mathematics

  • 10+ years’ experience assessing information systems against Security/Cybersecurity compliance standards and frameworks (ex. NIST, HIPAA, ISO, PCI, etc.)

Required Skills & Characteristics:

  • Defense sector experience in cybersecurity risk management and regulatory compliance

  • Perspective on the operational impact of cyber events in defense, healthcare, financial services, and critical infrastructure sectors

  • Functional understanding of Network Architecture, Design, and Security Best Practices

  • Proven ability to lead teams providing services around the CMMC program for the Defense Industrial Base

  • Ability to interact confidently with senior management, C-suite, and lawyers/partners

  • Proven ability to deliver solution strategies and implementations to clients

  • Highly motivated, willing to travel as required, and able to motivate others

  • Able to mentor and develop junior colleagues

  • Proficient with PC environments and related software, including Microsoft Office applications

  • Flexibility and responsiveness in managing multiple projects in sometimes high-pressure situations simultaneously

  • Self-motivator with ability to work independently

Ankura is proud to be an equal opportunity employer committed to fostering a diverse and inclusive environment where mutual respect and collaboration is paramount. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity and expression, disability, protected veteran status, national origin, or any other legally protected status.

Ankura is a specialized global expert services firm defined by HOW we solve challenges. Whether a client is facing an immediate business challenge, trying to increase the value of their company or protect against future risks, Ankura designs, develops, and executes tailored solutions by assembling the right combination of expertise. We build on this experience with every case, client, and situation, collaborating to create innovative, customized solutions, and strategies designed for today’s ever‐changing business environment. This gives our clients unparalleled insight and experience across a wide range of economic, governance, and regulatory challenges. At Ankura, we know that collaboration drives results.

Ankura is proud to be an equal opportunity employer committed to fostering a diverse and inclusive environment where mutual respect and collaboration is paramount. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity and expression, disability, protected veteran status, national origin, or any other legally protected status.

DirectEmployers