Principal Consultant - Cyber Security

We are seeking a highly experienced Principal Consultant - Cyber Security to provide strategic direction and delivery leadership across cybersecurity consulting engagements. The role encompasses advisory, assessment, and architecture review services across enterprise IT infrastructure environments, including systems, networks, cloud platforms, endpoints, and associated technologies.

The Principal Consultant will act as a subject matter authority and mentor, guiding consulting teams in delivering high-quality, audit-aligned, and regulator-ready cybersecurity engagements. The role requires strong expertise in enterprise security architecture, governance models, and regulatory frameworks, combined with the ability to elevate team capability and strengthen delivery standards.

Exposure to Operational Technology (OT) security environments will be considered an added advantage.

Responsibilities

• Provide strategic leadership and direction across cybersecurity consulting engagements, ensuring consistent delivery excellence, quality governance, and client satisfaction
• Lead and oversee enterprise-level security assessments across client IT and cloud environments, encompassing infrastructure architecture, identity governance, data protection, resilience mechanisms, and integrated enterprise security controls
• Drive the evaluation and maturity assessment of client security architecture, governance frameworks, and control environments
• Direct structured gap assessments against applicable regulatory and international standards, ensuring alignment with national frameworks and industry best practices
• Develop and shape risk-based remediation strategies and enterprise-level security improvement roadmaps
• Oversee engagement governance, ensuring scope control, risk management, quality assurance, and timely delivery across consulting assignments
• Review and endorse key deliverables, ensuring technical accuracy, regulatory defensibility, and executive-level clarity
• Advise and influence client executive leadership on cybersecurity risk posture, regulatory alignment, and strategic control enhancements
• Guide and mentor consulting teams across multiple security domains, strengthening technical rigor, regulatory interpretation, and reporting quality
• Define and establish assessment methodologies, governance frameworks, and reusable practice assets to enhance consulting maturity
• Support strategic pre-sales initiatives, solution positioning, and executive-level engagements
• Contribute to thought leadership and regulatory insight development, remaining current with evolving cybersecurity standards and emerging risk landscapes
  
  

Requirements

• Minimum 15-20 years of progressive experience in cybersecurity consulting, enterprise security architecture, infrastructure security assessments, and regulatory compliance advisory, with proven capability in mentoring and guiding consulting teams
• Proven track record of leading complex, multi-domain cybersecurity engagements across corporate and cloud environments
• Strong expertise in enterprise IT infrastructure security, including systems, network architecture, cloud environments, endpoint security, and governance controls
• Demonstrated experience in identity governance, privileged access management, data protection controls, vulnerability management oversight, and security architecture evaluation
• Hands-on experience conducting compliance-driven and risk-based assessments aligned with national and international regulatory frameworks and standards, including NCA, SAMA, ISO/IEC 27001, NIST, CIS, and related cybersecurity control frameworks
• Strong understanding of risk-based control evaluation methodologies and enterprise security maturity assessments
• Proven ability to mentor and develop consulting teams
• Excellent executive communication, stakeholder engagement, and presentation skills
• Bachelor's or Master's degree in Computer Science, Information Security, Cybersecurity, or related discipline
  
  

Preferred Certifications:

• CISSP
• CCSP or equivalent Cloud Security certification
• GIAC certifications (e.g., GSEC, GCED, GCIA, GCIH)
• AWS / Azure / GCP Security Specialty certifications
  
  

Equal Opportunity & Inclusion

We are proud to be an equal opportunity employer. All qualified applicants will receive fair consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, gender identity or expression, national origin, age, disability, genetic information, or pregnancy.

At Inbox Business Technologies, we celebrate diversity and strive to create an inclusive space where every team member is valued. We strongly encourage applicants from underrepresented backgrounds to apply and contribute their unique ideas, experiences, and voices to a company that believes in equality and embraces new ways of thinking.