×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Project Manager

Risk Senior Manager

Job in Columbia, Howard County, Maryland, 21044, USA
Listing for: SC&H Group
Full Time position
Listed on 2026-03-04
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager
Job Description & How to Apply Below
SC&H's Risk Practice is seeking a Senior Manager to lead and grow our service line with a strong focus on security-related consulting, including SOC (SSAE 18), ISO/IEC 27001, and ISO/IEC 42001 engagements. The ideal candidate combines sales/business development acumen, team leadership, and deep delivery expertise to shape client outcomes, scale practices, and develop high-performing teams. This role includes measurable growth responsibilities, client oversight, and engagement leadership across highly regulated and high-growth industries.

Work You'll Do:
  • Business Development & Growth (40%)
    • Own a personal book-of-business growth target; lead opportunity pursuit from prospecting through close (RFPs, proposals, orals, scoping, pricing).
    • Build and manage an opportunity pipeline across SOC (1/2/3), readiness, ISO 27001 ISMS implementation/assessments, ISO 42001 (AI Management System) readiness/certification guidance, and security program advisory.
    • Develop go-to-market (GTM) offerings, thought leadership, and partner/alliances; collaborate with Marketing on campaigns and events.
    • Expand client relationships at the CISO, CIO, CTO, CAE, CFO levels; lead cross-sell with Assurance, Tax, and other Cyber/Technology teams.
  • Engagement Leadership & Delivery (40%)
    • Lead SOC (SSAE 18) readiness and examination projects (SOC 1 Type 1/2, SOC 2 Type 1/2, SOC
      3), including scoping, testing strategy, and report quality.
    • Lead ISO/IEC 27001 implementations (ISMS design, risk assessment, controls, internal audits, certification readiness) and ISO/IEC 42001 readiness/implementation for AI governance.
    • Oversee delivery quality, risk, and timelines across multiple concurrent engagements; ensure methodology compliance and audit defensibility.
  • People Leadership & Practice Management (20%)
    • Manage, coach, and develop a team of managers/ seniors/ associates; lead staffing, utilization, and performance.
    • Champion a collaborative, inclusive, and learning-oriented culture; provide timely feedback and career guidance.
    • Strengthen delivery playbooks, templates, and accelerators; contribute to practice P&L hygiene (pricing discipline, margin, WIP/AR, scope management).
Qualifications
  • Required
    • 8-12+ years of progressively responsible experience in public accounting, consulting, or a comparable risk/security practice.
    • Proven track record in SOC (SSAE 18) readiness and examinations (SOC 1/SOC
      2), including planning, testing, supervision, and reporting.
    • Hands-on experience with ISO/IEC 27001 (ISMS design/implementation, internal audit, certification readiness) and familiarity with ISO/IEC 42001 (AI Management System) frameworks and AI governance concepts.
    • Demonstrated sales/business development success (pipeline creation, proposals/orals, solutioning, closing) and account growth.
    • People leadership experience: managing teams, setting priorities, and developing talent across multiple engagements.
    • Strong understanding of security and IT risk domains (identity and access, change/configuration, secure engineering, vendor risk, cloud controls, incident response, logging/monitoring, data governance, AI governance).
    • Excellent client communication, executive presence, and stakeholder management skills.
    • Prior practice-building responsibilities (offerings, pricing models, partner alliances).
  • Preferred
    • Experience coordinating with external auditors and working in regulated industries (SaaS, fintech, healthcare, critical infrastructure).
    • Working knowledge of cloud security (Azure, AWS, GCP) and enabling platforms (e.g., M365/Entra , Service Now GRC, Archer, One Trust).
  • Education & Certifications
    • Bachelor's degree in Accounting, Information Systems, Computer Science, Cybersecurity, or related field;
      Master's degree a plus.
    • One or more of the following required:
      • CISA (Certified Information Systems Auditor)
      • ISO/IEC 27001 Lead Implementer or Lead Auditor (or equivalent ISO credential)
      • CPA (active)
    • Additional relevant certifications a plus: CISSP, CCSP, CRISC, CISM, ISO/IEC 42001-related training/credentials.
  • Key Performance Indicators (KPIs)
    • Bookings & Revenue:
      Meets/exceeds individual and practice sales targets; healthy pipeline coverage, appropriate recovery/margins
    • Client Satisfaction &…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search