Principal Consultant | Data Risk Management (Remote)

Who is Trace3?

Trace3 is a leading Transformative IT Authority, providing unique technology solutions and consulting services to our clients. Equipped with elite engineering and dynamic innovation, we empower IT executives and their organizations to achieve competitive advantage through a process of Integrate, Automate, Innovate.

Our culture at Trace3 embodies the spirit of a startup with the advantage of a scalable business. Employees can grow their career and have fun while doing it!

Trace3 is headquartered in Irvine, California. We employ more than 1,200 people all over the United States. Our major field office locations include Denver, Indianapolis, Grand Rapids, Lexington, Los Angeles, Louisville, Texas, San Francisco.  

Ready to discover the possibilities that live in technology?

Come Join Us!

Street-Smart - Thriving in Dynamic Times

We are flexible and resilient in a fast-changing environment. We continuously innovate and drive constructive change while keeping a focus on the “big picture.” We exercise sound business judgment in making high-quality decisions in a timely and cost-effective manner. We are highly creative and can dig deep within ourselves to find positive solutions to different problems.

Juice - The “Stuff” it takes to be a Needle Mover

We get things done and drive results. We lead without a title, empowering others through a can-do attitude. We look forward to the goal, mentally mapping out every checkpoint on the pathway to success, and visualizing what the final destination looks and feels like.

Teamwork - Humble, Hungry and Smart

We are humble individuals who understand how our job impacts the company's mission. We treat others with respect, admit mistakes, give credit where it’s due and demonstrate transparency. We “bring the weather” by exhibiting positive leadership and solution-focused thinking. We hug people in their trials, struggles, and failures – not just their success. We appreciate the individuality of the people around us.

JOB SUMMARY:

The Principal Consultant of Data Risk Management will be responsible for providing thought leadership and expertise in the areas of data security, privacy, and governance.  The Principal Consultant will work closely with Trace3 associates, partners and clients to develop data risk management strategies, programs and solutions that reduce risk, improve maturity and meet organizational objectives. 

SUMMARY OF ESSENTIAL JOB FUNCTIONS:

• Collaborate with associates to develop and deliver Digital Consulting Group Offerings, Products and Solutions.
• Collaborate with a multidisciplinary team of experts in AI/ML, Cybersecurity, Data Privacy, Cloud, Data Management, Governance, Risk and Compliance to scope, design and deliver programs, products, solutions, and services engagements that enable secure and responsible digital transformation.
• Engage with clients to assess needs, provide strategic, tactical, and operational recommendations that emphasize safe, secure, ethical and compliant use of data through the lifecycle.
• Foster partnerships with third party vendors, delivery partners, contractors, industry groups and institutions to ensure client and organizational needs are consistently exceeded.
• Advocate on behalf of Trace3 on the importance of data risk management through speaking engagements, publications and participation at industry events and forums.
• Implement training and development programs for staff and clients on the principles and best practices for data risk management related to security, privacy, governance, ethical use, and AI/ML.
• Lead client engagements as the Subject Matter Expert (SME) to develop strategies, programs, solve customer problems and translate requirements into deliverable solutions.
• Provide subject matter expertise with respect to data in the domains of security, governance, risk, compliance, privacy, and AI/ML including staying up to date on the latest trends, technologies, compliance requirements, laws, industry standards, frameworks, and best practices. 
• Subject matter expert with technologies that help to operationalize data risk management practices in the areas of security, privacy, governance, compliance and AI/ML.

REQUIRED SKILLS AND EXPERIENCE:

• Bachelor’s degree in computer science, Cybersecurity or equivalent information security, privacy, risk, compliance, project management or like discipline from an accredited college or university or measurable knowledge / experience from proven industry, military, defense, or government operations.
• Experience in a customer facing, technology consulting roles.
• 5-8+ years’ experience developing, implementing, and managing Cybersecurity strategies, programs, technologies, and associated controls.
• 5-8+ years’ experience developing, implementing, and managing Privacy strategies, programs, technologies, and associated controls.
• 5-8+ years’ experience developing, implementing, and managing Governance, Risk & Compliance strategies, programs, technologies, and associated controls.
• Certifications including AIGP, CIPP/E/US/M, CISSP, CISM, CDPSE, CDMP, are highly preferred.
• Cloud certifications (AI, Security, Architecture, Engineering) from at least one major CSP (Azure, AWS, GCP) are highly preferred.
• Subject matter expertise of Trustworthy AI Principles, Frameworks and Standards including, but not limited to NIST AI RMF, ISO 42001:2023, 8183:2023 and OWASP.
• Subject matter expertise of Cybersecurity Principles, Frameworks and Standards including NIST CSF, CSA CCM, DSMM, & ISO 27001.
• Subject matter expert of Data Privacy Principles, Frameworks and Standards including, but not limited to NIST PF & ISO 27701.
• Subject matter expert of Data Management and Governance Principles, Frameworks and Standards including, but not limited DAMA DMBOK, ISO 38505 and DCAM.
• Working knowledge and experience with at least one (preferably multiple) major cloud service providers (AWS, GCP, Azure).
• Knowledge and hands on experience with data risk management technologies including but not limited to data security posture management (DSPM), Data Loss Prevention (DLP), Database Activity Monitoring (DAM), Data Obfuscation, Data Governance, Privacy Program Management, and related capabilities and features.
• Knowledge and experience creating and maintaining technical documentation, presentations, plans, roadmaps, etc.
• Motivated self-starter who loves to solve challenging problems and feels comfortable working directly with customers.
• Strong interpersonal and communication skills is required.
• Strong customer presentation skills are required.
• Highly organized, detail-oriented, excellent time management skills and able to effectively prioritize tasks in a fast-paced, high-volume, and evolving work environment.
• Comfortable managing multiple and changing priorities, and meeting deadlines in an entrepreneurial environment.
• Ability to travel when needed; holds a valid driver’s license.

The Perks

• Comprehensive medical, dental and vision plans for you and your dependents
• 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
• Competitive Compensation
• Training and development programs
• Stocked kitchen with snacks and beverages
• Collaborative and cool culture
• Work-life balance and generous paid time off

Our Commitment

At the core of Trace3's DNA is our people. We are a diverse group of talented individuals who understand the importance of teamwork and demonstrating leadership, character, and passion in all that we do.

We’re committed to fostering an inclusive workplace where everyone feels respected, valued, and empowered to grow. We recognize that embracing diversity drives innovation, improves outcomes, fosters collaboration, boosts teammate satisfaction, and builds a more inclusive culture.

As an equal opportunity employer, Trace3 bases all employment decisions based on individual qualifications, merit, and business requirements. We do not engage in discrimination on the basis of race, color, religion, sex (including gender identity, sexual orientation, and pregnancy), national origin, age (40 or older), disability, genetic information, or any other characteristic protected by federal, state, or local law.

Any demographic information provided is strictly voluntary, kept confidential in accordance with Equal Employment Opportunity (EEO) regulations, and will not be used in employment decisions, including hiring, promotions, or mentorship programs. We are committed to providing equal employment opportunities for all.

If you require a reasonable accommodation to complete the application process or participate in an interview, please email recruiting@trace3.com.

***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.