Cybersecurity Senior Consultant

Your Journey at Crowe Starts Here:

At Crowe, you can build a meaningful and rewarding career. With real flexibility to balance work with life moments, you're trusted to deliver results and make an impact. We embrace you for who you are, care for your well-being, and nurture your career. Everyone has equitable access to opportunities for career growth and leadership. Over our 80-year history, delivering excellent service through innovation has been a core part of our DNA across our audit, tax, and consulting groups. That's why we continuously invest in innovative ideas, such as AI-enabled insights and technology-powered solutions, to enhance our services. Join us at Crowe and embark on a career where you can help shape the future of our industry.

Job Description:

At Crowe LLP, we bring deep industry specialization and functional expertise to help organizations manage cybersecurity risk, protect sensitive information, and strengthen operational and business resilience. We are seeking a Cybersecurity Senior Consultant or Manager to join our growing team of professionals focused on both evaluating cybersecurity and resilience capabilities and supporting the maturity of programs across clients' environments.

As a Senior Consultant or Manager, you will work directly with client stakeholders to understand cybersecurity and operational resilience needs; collaborate with engagement team members to plan and execute assessments and enable sustainable cybersecurity and resilience programs; and deliver actionable findings and recommendations that enhance security posture, regulatory compliance, and business continuity.

What You'll Do

You will play a critical role in delivering cybersecurity and advisory engagements across clients. Responsibilities include:

• Planning and executing cybersecurity and resilience assessments across technology and operational domains, including:

  • Data protection and information governance

  • HIPAA Security and Privacy Rule assessments

  • Third-party and vendor risk management

  • Incident response, cyber resilience, and disaster recovery

  • Business continuity and operational resilience

  • Infrastructure and application security controls

• Assessing the design and operating effectiveness of cybersecurity and resilience controls against applicable regulatory requirements and industry frameworks (e.g., HIPAA, NIST CSF, NIST SP 800-53, ISO 27001, etc).

• Supporting integrated assessments that evaluate how cybersecurity controls enable broader business and operational resilience objectives.

• Act as a strategic advisor to client security and risk functions, helping to build, enhance, and operationalize cybersecurity programs across domains such as governance, risk, and compliance (GRC) and business resiliency.

• Serve as an extension of client teams to lead or support program execution activities, including control implementation, metrics/reporting, issue remediation, and continuous improvement initiatives.

• Mentor and supervise junior consultants; contribute to team development and internal knowledge-sharing.

• Preparing clear, thorough documentation, reports, and deliverables independently and on schedule.

• Communicating assessment scope, procedures, findings, and recommendations to both technical and non-technical client stakeholders.

• Maintaining engagement quality and responsiveness throughout the delivery lifecycle, ensuring client confidence and satisfaction.

Required Qualifications

• Minimum of 3 years of total professional experience, including:

  • At least 2 years of hands-on experience delivering cybersecurity or IT risk assessments.

• Strong working knowledge of:

  • Cybersecurity operations and controls

  • Data protection principles

  • HIPAA Security and Privacy Rule requirements

• Demonstrated ability to independently manage engagements from planning through reporting with limited oversight.

• Strong written and verbal communication skills, particularly in documenting observations and explaining results to diverse audiences.

Preferred Qualifications

• One or more relevant professional certifications (e.g., CISSP, CISA, HCISPP, or equivalent).

• Experience assessing or advising on:

  • HIPAA compliance

  • Cybersecurity programs

  • Business continuity and disaster recovery

  • Operational or cyber resilience initiatives

• Prior experience at a public accounting or advisory firm delivering cybersecurity, privacy, or resilience services to healthcare or life sciences organizations.

We expect the candidate to uphold Crowe's values of Care, Trust, Courage, and Stewardship. These values define who we are. We expect all of our people to act ethically and with integrity at all times.

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. Crowe is not sponsoring for work authorization at this time.

Our Benefits:
Your exceptional people experience starts here. At Crowe, we know that great peopleare what makes a great firm. We care about our people and offer employees a comprehensive total rewards package. Learn more about what working at Crowe can mean for you!

How You Can Grow:
We will nurture your talent in an inclusive culture that values diversity. You will have the chance to meet on a consistent basis with your Career Coach that will guide you in your career goals and aspirations. Learn more about where talent can prosper!

More about Crowe:
Crowe (www.crowe.com) is one of the largest public accounting, consulting and technology firms in the United States. Crowe uses its deep industry expertise to provide audit services to public and private entities while also helping clients reach their goals with tax, advisory, risk and performance services. Crowe is recognized by many organizations as one of the country's best places to work. Crowe serves clients worldwide as an independent member of Crowe Global, one of the largest global accounting networks in the world. The network consists of more than 200 independent accounting and advisory services firms in more than 130 countries around the world.

Crowe LLP provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, sexual orientation, gender identity or expression, genetics, national origin, disability or protected veteran status, or any other characteristic protected by federal, state or local laws.

Crowe LLP does not accept unsolicited candidates, referrals or resumes from any staffing agency, recruiting service, sourcing entity or any other third-party paid service at any time. Any referrals, resumes or candidates submitted to Crowe, or any employee or owner of Crowe without a pre-existing agreement signed by both parties covering the submission will be considered the property of Crowe, and free of charge.

Please visit our webpage to see notices of the various state and local Ban-the-Box laws and Fair Chance Ordinances, where applicable.

If you are interested in applying for employment with Crowe and are in need of an accommodation or require special assistance to navigate our website or to complete your application, please visit our Applicant Assistance and Accommodations page for more information: https://careers.crowe.com/crowe-applicant-assistance-and-accommodation