About FTI Consulting

FTI Consulting is a global business advisory firm, dedicated to helping organisations navigate and manage a diverse range of complex issues and business challenges. Our expertise covers the spectrum of Corporate Finance & Restructuring, Economic Consulting, Forensic & Litigation Consulting, Strategic Communications and Technology. We are a company of more than 7,000 professionals with annual revenues in excess of US$2.8 billion, with offices located in every major business centre in the world.

Our professionals are some of the most experienced leaders in their fields and advise across a range of industries. Our clients engage us for high-stakes concerns or emerging opportunities that require specialised expertise, and over the past two decades we have been engaged to work behind the headlines on some of the biggest news stories to date.

FTI Consulting is a fast growing and vibrant place to work. Steered by our values of Integrity, Creativity, Achievement, Empathy and Respect, its meritocratic culture invites both collaboration and healthy debate. We are large enough to be trusted by our clients to solve their biggest issues and yet small enough to know our colleagues on a personal level enabling better team working and a supportive culture to develop your career goals and ambitions.

Level Requirements

• Ability to independently follow a project plan and create a technical work breakdown structure to achieve the project goals and objectives
• Ability to independently plan and develop one, or more, technical solutions for a project

About the Role

As the Cybersecurity Data Privacy and Third-Party Risk Senior Analyst, you will play a key role within the our EMEA Cybersecurity team. Your work will be at the heart of what we do: ensure the continuous improvement of our Information Security Management System, helping FTI protect valuable and sensitive data for our firm, employees, and clients. You will be primarily responsible for monitoring key security controls and procedures and executing assessments across multiple IT & Information Security functions. In addition, you will get to exercise your strategy muscles, recommending and assisting in completing process implementation & improvement efforts that will shape the future of information security for FTI.

What You\xe2\x80\x99ll Do

• Perform monitoring of key security control and procedures
• Plan and conduct vendor assessments across multiple IT systems.
• Perform Independent analysis of results of vendor assessments and testing to assess risks and provide appropriate recommendations for corrective actions
• Collaborate with various IT departments to identify root causes and assist in the development of solutions
• Provide support to data protection programs, including insider threat Management and Data Loss Prevention (DLP).
• Provide Data Privacy support to clients, including --

• Tracking and reviewing Privacy Impact Assessments (PIAs)
• Completion of security and privacy questionnaires in response to client inquiries
• Perform deep analysis of Access, Change Management, and Vulnerability Management, and assist with 3rd party risk assessments
• Work with various \xe2\x80\x9ccontrol owners\xe2\x80\x9d (Application and Process) to help in remediation and process improvement activities
• Act as a liaison between external client auditors and internal process owners, and respond to external organizations\' requests
• Perform deep analysis across a full spectrum of IT and Data Security areas, including review of Application, Infrastructure, and Cloud Risks and controls (including Logical Access, Change Management, Vulnerability Management, and assisting with 3rd party risk assessments).
• Assist and coordinate development/update of IT and Security Standard Operating Procedures (SOPs), contribute to governance and policy updates through assessment, research, and recommendations.
• Perform various internal and administrative duties (such as reporting and planning) to support the department and internal initiatives

Additionally, the preferred candidate will:

• Use excellent communication skills and a consultative approach to identify opportunities for improvement.
• Actively participate in decision-making with GCP management and seek to understand the broader impact of current decisions.
• Prepare detailed, clear, concise, and organized work papers according to GCP Security assessment standards, with sufficient evidence to support and document findings, conclusions, and recommendations.
• Identify opportunities and provide actionable recommendations to enhance the security assessment process, such as updating and adapting security assessment work programs and questionnaires. Assist in selecting and tailoring security assessment and review approaches, methods, and tools to support security assessment objectives, identified risks, and business unit requirements.
• Assist and support special investigations and other Corporate Security assessment initiatives or special projects as requested.

How You\xe2\x80\x99ll Grow

ITG uses an \xe2\x80\x9cIT Service Portfolio\xe2\x80\x9d approach to align with business priorities and articulate and communicate its diversification of IT investments. FTI Consulting leverages the Information Technology Group (ITG) to accomplish the following goals: Improve Practitioner Productivity and grow the business with IT, Reduce Risks with IT in the business, and manage a balanced set of IT investments that meet business objectives. In addition, we encourage our employees to become \xe2\x80\x9cSuper Users\xe2\x80\x9d of all our services, take advantage of multiple opportunities to work with colleagues on a wide array of cross-functional to inter-department projects, and self-improve through professional development.

Basic Qualifications

• Minimum of 3 years\xe2\x80\x99 experience in IT auditing, Third-Party or IT compliance assessments (professional services firm experience preferred); OR 1 year of experience in IT AND 1 year of experience in IT auditing or IT compliance assessments.
• Minimum of 2 years\xe2\x80\x99 experience in Cybersecurity monitoring and governance tools.
• Undergraduate degree (4 years) in Management Information Systems, Information Technology, Computer Science, or related field preferred; graduate degree a plus.

Preferred Skills

• Relevant BA/BS degree (Management Information Systems, Information Technology, Computer Science, or related field preferred) or security certifications.
• Relevant professional designations, such as:

• CISA or Security+ strongly preferred
• CRISC, CISSP, CISM, CCSP, AWS, or Microsoft Azure security-specific \xe2\x80\x9cCloud\xe2\x80\x9d certifications are a plus
• 3 years of Technical Cybersecurity, IT audit/GRC experience plus 2 years leading IT Audit/Cybersecurity Assessments or 5 years of Cybersecurity, IT Audit/GRC experience, and 2 years within FTI.
• Undergraduate degree (4 years) in Management Information Systems, Information Technology, Computer Science, or related field preferred; graduate degree a plus.
• Cybersecurity cloud solutions, including CASP, insider threat management and monitoring.
• Azure/Microsoft 365 security and compliance solution.

#LI-AW1

Our Benefits

Apart from the well-structured career path and excellent team environment, our employees enjoy a variety of perks and benefits.

We offer a competitive benefits and wellbeing programme including private medical insurance, dental insurance, life insurance, income protection, flex critical illness cover, 5% employer pension contribution, holiday buy, discounted gym membership, interest free travel loans, paid volunteer hours and corporate matching for charitable donations, and much more.

About FTI Consulting

What makes us unique? With more than 7,000 employees located in offices in every corner of the globe, we are the firm our clients call when their most important issues are at stake. Regardless of what level you are, you will have the opportunity to work alongside and learn from top experts in your field on high-profile engagements that impact history. Our culture is collaborative, and we value diversity, recognition, development and making a difference in our communities.

FTI Consulting is publicly traded on the New York Stock Exchange and has been recognized as a Best Firm to Work For by Consulting magazine and one of America\xe2\x80\x99s Best Management Consulting Firms by Forbes. For more information, visit and connect with us on ( ), and .

FTI Consulting is an equal opportunity employer and does not discriminate on the basis of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation.

#LI-AW1

Additional Information

• Job Family/Level: Core Operations Level 2 - Tier 2
• Citizenship Status Accepted: Not Applicable
• Exempt or Non-Exempt?: Exempt
• Citizenship Status: Not Applicable

Compensation

FTI Consulting