New Value Solutions, a national IT consulting company, is seeking an Engagement Leader Cybersecurity Threat & Risk Assessment to lead a major public-sector cybersecurity initiative in a highly regulated justice environment. This role will lead enterprise-wide cybersecurity and risk management consulting work, including oversight of Red Team penetration testing and delivery of a comprehensive Threat & Risk Assessment (TRA) engagement. The successful candidate will be accountable for overall engagement delivery, executive stakeholder management, governance, quality assurance, and production of high-quality strategic and technical deliverables. This role is expected to be primarily remote within Canada, with workshops, briefings, and stakeholder sessions as required. Responsibilities - Serve as the primary engagement lead and executive point of contact. - Lead and oversee Red Team penetration testing and comprehensive Threat & Risk Assessment activities. - Direct project governance, business analysis, staffing, budgeting, scheduling, monitoring, and reporting. - Provide strategic cybersecurity and risk management advisory services aligned to public-sector objectives. - Apply recognized risk frameworks such as ISO 31000, ISO/IEC 27005, NIST RMF, FAIR, or equivalent. - Lead executive and stakeholder workshops, briefings, and decision-support sessions. - Develop or oversee deliverables including TRA reports, risk treatment plans, mitigation roadmaps, executive summaries, options analysis, and governance recommendations. - Support development of impact/likelihood matrices, risk tolerance statements, and risk governance tools. - Ensure quality, timeliness, and consistency of all engagement outputs. - Lead change management, stakeholder adoption, and ongoing advisory activities as needed. - Work effectively in public-sector, justice-sector, or other highly regulated environments involving sensitive information and complex stakeholder groups. Requirements - Minimum 10 years of experience in management roles for large enterprise cybersecurity and/or risk management consulting engagements. - Minimum 5 years of experience leading Threat & Risk Assessment engagements and teams of similar scope and complexity. - Experience leading at least 5 comparable Red Team and/or comprehensive TRA engagements. - Strong experience with executive communications, stakeholder management, and client advisory. - Demonstrated experience with cybersecurity risk frameworks and governance models. - Experience delivering in public-sector or other highly regulated environments; justice/courts experience is a strong asset. - Must be legally able to work in Canada. - Must be able and willing to complete required criminal record and enhanced security screening within client timelines. - CISSP or CISM certification required; equivalent senior information security management certification may be considered. - Project management, change management, or related certifications are assets. If you have this expertise, and are able to work in Canada, please submit your resume. While we thank all candidates in advance for their application, only those candidates who are shortlisted will be contacted. ID#5340 Questions: 1. How many years of experience do you have leading cybersecurity or risk management consulting engagements? 2. How many years of experience do you have delivering Threat & Risk Assessments? 3. How many Red Team or penetration testing engagements have you led? 4. Which cybersecurity risk frameworks have you worked with? 5. Are you able to obtain Enhanced Security Clearance in Canada? 6. Do you hold CISSP or CISM certification?
Job Title
Engagement Lead