Director - Risk Advisory (Strategic & Operational)

Job Description

Job Description

By joining our rapidly growing Risk Advisory practice you will serve as a trusted partner to our clients. You’ll bring your first-hand experience, unique perspectives, and functional knowledge to deliver tailored integrated solutions that solve today's challenges and set the foundation for future success. With support from experienced leaders and a dedicated coach, you will join a collaborative community that invites you to contribute beyond the scope of client delivery.

In this role, you will drive positive impacts through the design, build, execution, and assessment of risk programs across cyber, technology, and operational risk (non-financial risk) domains. You will be an integral part of our leadership team: driving the growth of our client base, leading client engagements, and continuously improving our capabilities. We are looking for self-starters who enjoy learning and staying current with industry trends and technologies, excel at team leadership and mentorship, and are eager to help our clients strategically solve complex risk challenges.

• Identify and lead business development opportunities to win new clients and expand services at existing clients. Market a full range of services to prospective clients including using your existing relationships to generate new opportunities.
• Support market opportunities identified by business developers or other leaders within CrossCountry with client delivery or sector specific expertise.
• Foster a culture of growth and business development, serving as a thought leader in the market
• Provide excellent client service and develop and nurture client relationships, serving as a liaison between clients and project teams, understanding their business needs, and delivering responsive and high-quality service
• Apply specialized knowledge to strategic and operational risk domains, and demonstrate broad acumen across facets of risk domains including resiliency, data, models, artificial intelligence (AI), third party risk management (TPRM), privacy, and process & transaction risk
• Collaborate to help lead development of compelling, easy-to-consume, data-driven deliverables that pragmatically solve client problems
• Structure, implement, and synthesize research and analysis on a range of key industry developments and trends to inform client deliverables, proposals, marketing materials, and market strategies
• Oversee accounts and client relationships across various industries, including financial services and emerging growth companies
• Provide hands-on project leadership and apply specialized knowledge across a diverse range of engagements spanning:

o Risk Transformation: Maturity assessments and roadmaps; operating models; risk program builds; executive advisory

o Risks & Controls: Risk assessments; frameworks; RCSAs; testing methodologies; testing execution and reporting

oInternal Audit: Audit planning, execution, and reporting

o Regulatory Compliance: Regulatory mapping and horizon scanning; compliance readiness and remediation activities; exam and reporting support

o Reporting & Metrics: KPI and KRI development; automation and operations; dashboards and reporting; risk appetite assessment

o Apply specialized knowledge in particular non-financial risk domains, and broad acumen across facets of all domains including cybersecurity, technology, cloud, operational resiliency, data, third party, privacy, and product risk

• Conduct research and analysis, leveraging data to derive valuable insights and actionable recommendations for clients
• Drive development of solutions and deliverables, combining technical depth with management consulting skills to influence and deliver results to business executives and technical professionals
• Serve as a coach and mentor to team members, fostering their professional growth and development

• 9+ years prior experience in professional services (public accounting, advisory firm, or management consulting firm)
• Experience with the major cybersecurity, technology, and operational risk frameworks and standards such as NIST CSF, CRI Cybersecurity Profile, CSA Cloud Controls, ISO 27000 series, COBIT, and Basel Operational Risk Principles
• Experience delivering security solutions across major cloud service provider (AWS, Azure, GCP) platforms
• Knowledge of comprehensive risk management programs including governance, policy, architecture, processes, and controls
• Experience mentoring and developing junior team members and helping project teams resolve multifaceted issues
• Demonstrated desire for continued learning about new and emerging technologies and staying current with trends in cyber, technology, and operational risk management
• Contribute to developing and implementing firm-approved, AI-enabled solutions for clients, in accordance with company policies on data protection, intellectual property, and professional standards.
• Stay informed about emerging AI tools and techniques and collaborate with firm leadership to identify compliant opportunities to enhance client solutions and internal processes.

• Bachelor’s degree from an accredited university.
• Professional certification (CISA, CISM, CISSP, CIPT, CIPP, CIPM).
• Willingness to travel domestically up to 20%-30% (varies by client).
• Availability to work on client site or in office 3 days a week, with 2 days remote (hybrid environment).

#LI-Hybrid

#LI-BW1

For applicants located in New York, CrossCountry Consulting is required to include an estimate of the compensation range for this role. The following range takes into account a wide range of factors including but not limited to, skills, experience, education, licenses, certifications, business needs, and internal equity. An estimate of the current range is $169,000 - $356,000 per year + annual bonus + additional benefits.

Benefits Summary

The CrossCountry total rewards package includes comprehensive healthcare options, including medical, dental, and vision coverage; flexible spending accounts; and a 401(k) with company matching. Additionally, employees can take advantage of generous parental and maternity leave policies, technology stipends, and wellness reimbursement programs, all designed to support both professional growth and personal well-being. For detailed information about benefits at CrossCountry, please visit our dedicated benefits site: - consulting.com/careers/benefits/.

Equal Employment Opportunity (EEO)

CrossCountry provides equal employment opportunities (EEO) to all employees and applicants for employment and believes that respect and fair treatment are critical to creating a productive and inclusive workplace.

As an equal opportunity employer, CrossCountry is fully committed to comply with all federal, state, and local laws and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability, pregnancy, genetics, sexual orientation, veteran status, gender identity or expression or any other protected characteristic. The company also complies with pay transparency and labor laws applicable to all terms and conditions of employment.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.