Data Governance Consultant (Senior Associate)

Company:

Established global consultancy with expertise in financial services, which has recently received a large round of funding from a public global financial leader with over $100B AUM. This is a new position to support the global cybersecurity advisory practice, which is based in NYC. This role will focus primarily on GRC, and we are ideally looking for a candidate with client-facing experience from a cybersecurity advisory firm selling into security and compliance stakeholders in both middle-market and enterprise-level customers. We can consider candidates in major cities in EST or CST on a remote basis. Ideal candidates will have experience with platforms similar to OneTrust.

Position Overview:

We are seeking an experienced Senior Associate-Level Data Governance Consultant to join our Cybersecurity and Technology Advisory practice. This role is ideal for an early-career consultant with foundational experience in data governance, privacy, or information risk who is looking to deepen their expertise in a client-facing advisory environment. The Senior Associate will support data governance and data risk engagements for growth-stage and middle-market organizations, working closely with leadership to help clients improve data management practices, regulatory compliance, and overall cybersecurity posture.

The ideal candidate thrives in client-facing environments and is adept at bridging technical requirements with executive-level strategy.

Location:

New York Metro or Chicago Metro Area. We are also open to considering candidates in major hubs in EST or CST.

Key Responsibilities

• Assess client data management and governance capabilities, identifying maturity gaps and improvement opportunities.
• Assist in the development and implementation of practical data governance frameworks aligned with business objectives and regulatory requirements (e.g., NIST Privacy Framework, HIPAA, GDPR, CCPA).
• Help to create data classification models, data inventories, stewardship documentation, and governance policies that integrate with cybersecurity and IT controls.
• Support data lifecycle management, risk assessments, and compliance readiness engagements alongside cybersecurity and privacy teams.
• Provide advisory support to clients on data quality, retention, access management, and information asset inventories.
• Conduct research and analysis related to data privacy regulations and standards
• Contribute to knowledge sharing, client proposals, and thought leadership content around emerging data governance trends.
• Contribute to proposals and help to craft a go-to-market strategy for new customer segments

Qualifications

• Bachelor’s degree in Information Systems, Computer Science, or a related field; master’s degree preferred.
• 4 years of experience in data governance, information management, or risk and compliance consulting.
• Familiarity with regulatory and standards-based frameworks such as NIST 800-53, ISO 27001, COBIT, DAMA-DMBOK, or DGI Data Governance Framework.
• Foundational understanding of cybersecurity, privacy, and IT risk management principles and how they intersect with enterprise data programs.
• Experience supporting the development of policies and procedures for data classification, retention, and access control.
• Excellent analytical, communication, and presentation skills with the ability to convey complex ideas to business and technical audiences.
• Interest in pursuing relevant certifications (e.g., CDMP, CIPP, CIPM)

Bonus Points

• Cyber Security Advisory Experience (from Big 4 or a Start-Up Consultancy offering cyber security advisory services to mid-market or Fortune 500 customers)
• Experience with Privacy-enabling technology platforms such as OneTurst
• Deep understanding of compliance frameworks