Principal Cyber Risk Advisor, Cybersecurity M&A

About the Role

As a key member of the team, the Principal Cyber Risk Advisor will be responsible for representing cybersecurity across the full deal lifecycle, shaping strategy, identifying and quantifying risk, guiding Day 1 readiness, and driving integration and separation plans. This is a highly visible role that requires strong judgment, technical depth, and executive communication skills.

The Principal Cyber Risk Advisor will also be expected to drive the use of AI-enabled capabilities to improve cybersecurity M&A processes, risk insights, and execution speed. This will involve collaborating with internal stakeholders to develop and implement innovative solutions that leverage the latest technologies and trends in cybersecurity.

What You Will Do

• Lead cybersecurity due diligence for acquisitions, divestitures, carve-outs, joint ventures, and other strategic transactions
• Serve as a primary cybersecurity lead across the transaction lifecycle, from early-stage diligence to closing and post-close execution
• Represent the Cyber function holistically in M&A activities, assessing risks and ensuring alignment with enterprise cybersecurity standards and practices
• Lead cyber diligence activities aligned to recognized frameworks and standards, including NIST CSF, NIST SP 800-53, and NIST SP 800-171
• Quantify cyber risk and remediation requirements, translating findings into business terms and executive decision support
• Drive Day 1 cybersecurity readiness, including minimum control requirements, risk-based exceptions, and stabilization planning
• Build and execute 30/60/100-day cybersecurity integration or separation plans, supporting long-term roadmap development
• Develop and maintain repeatable playbooks, templates, and standards for cyber diligence, integration, separation, and post-close execution
• Establish secure data-sharing, clean-room, and transaction confidentiality protocols in partnership with internal stakeholders

What We Are Looking For

• Deep technical expertise across core cyber domains, including identity and access management, network security, cloud security, and application security
• Experience with cybersecurity due diligence, M&A, and post-close execution
• Strong understanding of recognized frameworks and standards, including NIST CSF, NIST SP 800-53, and NIST SP 800-171
• Ability to quantify cyber risk and remediation requirements, translating findings into business terms and executive decision support
• Excellent executive communication skills, with the ability to present complex technical information to non-technical stakeholders
• Experience working in a fast-moving deal environment, with a strong sense of urgency and flexibility
• Strong judgment and technical depth, with the ability to operate independently and make decisions with limited supervision
• Bachelor's degree in a relevant field, such as computer science, cybersecurity, or engineering

Nice to Have

• Experience with AI-enabled capabilities, such as machine learning and natural language processing
• Knowledge of cloud security, including AWS, Azure, and Google Cloud
• Familiarity with cybersecurity incident response and business continuity planning
• Experience working in a global organization, with a understanding of international cybersecurity regulations and standards

Benefits and Perks

• Competitive salary and benefits package
• Opportunity to work remotely, with a flexible and dynamic work environment
• Professional development opportunities, including training and conference attendance
• Collaborative and supportive team environment, with a strong focus on innovation and creativity
• Access to cutting-edge technologies and tools, including AI-enabled capabilities and cybersecurity solutions
• Comprehensive health and wellness program, including mental health support and employee assistance
• Generous paid time off and holiday schedule, with a focus on work-life balance
• Remote stipend and home office setup support, to ensure a productive and comfortable work environment

• Develop a strong understanding of cybersecurity due diligence and M&A, including recognized frameworks and standards such as NIST CSF and NIST SP 800-53.
• Build a portfolio that showcases your experience and expertise in cybersecurity, including any relevant certifications or training.
• Practice presenting complex technical information to non-technical stakeholders, using clear and concise language.
• Research the company and the role, including the organization's cybersecurity practices and standards, to demonstrate your interest and knowledge.
• Be prepared to discuss your experience working in a fast-moving deal environment, and how you handle urgency and flexibility in your work.
• Consider obtaining certifications such as CISSP or CISM to demonstrate your expertise and commitment to the field.
• Develop a strong network of contacts in the cybersecurity industry, including professionals who can provide guidance and support throughout your career.