Managing Consultant - Cyber Strategy & Risk

Introduction

The IBM security consulting team provides customized solutions for our clients, not point solutions or basic product installation. The Managing Consultant will work with our clients to understand their specific business issues, both internally and externally, and provide solutions to solve specific business issues for our clients. They will be able to look at our client’s issues and work with other senior IBM consultants to provide guidance on a systematic approach to solve these within our client’s budget and timeframe.

The Managing Consultant will provide subject matter expertise in the form of workshops and consulting engagements, which assess a client’s security capabilities – policy, process, technology, or organizational areas – identify gaps, and recommend cost‑effective best practices to reduce client risk and increase their control over security risk. Hands‑on implementation experience and deep technical knowledge of security governance tools are required.

The Senior Consultant will assist in pre‑sales, sales, and closure, and organize the delivery of security consulting services with local teams.

The Managing Consultant will act as a trusted client advisor and technical lead, delivering strategic security advisory services and leading large groups. They will conduct workshops, build best‑practice workshops, facilitate client engagements, analyze security posture, and shape client expectations. The role requires strong communication, presentation, and written skills, and a proven record of security thought leadership.

• Knowledge across multiple platforms, processes, or architectures.
• Security consulting skills and the ability to act as a trusted client advisor and a trusted technical lead for the team.
• Deliver strategic security advisory services.
• Proven record of security thought leadership and business and technical acumen in Cyber Strategy and Risk services.
• Depth of knowledge in one or more core security areas such as Security Architecture, Cloud Security, OT Security, SAP Security, e‑GRC.
• Hands‑on experience and understanding of compliance such as ISO 27001, NCA, SOC 2, COBIT, NIST, PCI DSS, GDPR, etc.; and regulatory requirements.

• Strong communication and presentation skills.
• Ability to lead large groups and be a primary facilitator and lead.
• Strong written skills.
• Comfortable working in a project‑based / client‑serving model.
• Ability to lead and shape client expectations.
• Help drive pursuits and engage in complex deals, matching outcomes to expectations.
• Ability to work easily with diverse and dynamic teams.

Ability to work in a matrix management model.

• At least 5 years of relevant consulting experience in the Cyber Strategy and Risk domain.
• Security consulting experience across multiple client verticals, including Financial Services, Public Sector, Technology, Telecommunications, Manufacturing, Industrial & Mining, etc.