Cybersecurity Virtual Chief Information Security Officer (vCISO)

About the position Cybersecurity Virtual Chief Information Security Officer (vCISO) Job Level: W2T Consultant Job Location: Hybrid, must be local to the Saint Louis area Travel Expectations: 25% Job Classification: Temporary (W2T), Contractor (1099) Join Centric Consulting – A Culture You’ll Love At Centric Consulting, we've cultivated a unique approach to business. Our business is built on three fundamental principles: Enjoy the people you work with, have fun, and do great work. These principles define our consulting model and have crafted one of the most vibrant cultures in the consulting industry – celebrating individuals, collaboration, and lifelong friendships. In this role, you will: Serve as a trusted security advisor to multiple clients, developing and executing tailored information security strategies aligned with business goals, regulatory requirements, and industry best practices. Design, implement, and govern enterprise security programs, including policies, standards, risk management frameworks, and security roadmaps. Lead recurring risk assessments, vulnerability reviews, and maturity evaluations, translating findings into actionable remediation plans. Stay current on evolving cyber threats, technologies, and compliance requirements, proactively guiding clients to strengthen their security posture. Manage end-to-end incident response engagements, including triage, containment, forensic investigations, stakeholder communications, remediation, and post-incident improvement initiatives. Partner with client leadership and technical teams to embed security controls into infrastructure, applications, and digital transformation projects. Architect and deploy advanced security solutions, including AI-driven Data Loss Prevention (DLP) platforms, modern XDR environments, and integrated SIEM/SOAR capabilities. Lead enterprise-wide security platform migrations and implementations across complex, multi-site client environments while ensuring business continuity. Design and implement Zero Trust security architectures, including secure integration with OT/ICS/SCADA systems where applicable. Act as the primary liaison for client audits and regulatory assessments, supporting compliance with standards such as NIST, ISO 27001, HIPAA, PCI DSS, and SOX. Oversee and optimize security technology stacks, including firewalls, endpoint protection, IAM, encryption, and monitoring platforms. Contribute to business development through security assessments, proposals, and client presentations, helping expand consulting engagements.

Responsibilities

• Serve as a trusted security advisor to multiple clients, developing and executing tailored information security strategies aligned with business goals, regulatory requirements, and industry best practices.
• Design, implement, and govern enterprise security programs, including policies, standards, risk management frameworks, and security roadmaps.
• Lead recurring risk assessments, vulnerability reviews, and maturity evaluations, translating findings into actionable remediation plans.
• Stay current on evolving cyber threats, technologies, and compliance requirements, proactively guiding clients to strengthen their security posture.
• Manage end-to-end incident response engagements, including triage, containment, forensic investigations, stakeholder communications, remediation, and post-incident improvement initiatives.
• Partner with client leadership and technical teams to embed security controls into infrastructure, applications, and digital transformation projects.
• Architect and deploy advanced security solutions, including AI-driven Data Loss Prevention (DLP) platforms, modern XDR environments, and integrated SIEM/SOAR capabilities.
• Lead enterprise-wide security platform migrations and implementations across complex, multi-site client environments while ensuring business continuity.
• Design and implement Zero Trust security architectures, including secure integration with OT/ICS/SCADA systems where applicable.
• Act as the primary liaison for client audits and regulatory assessments, supporting compliance with standards such as NIST, ISO 27001, HIPAA, PCI DSS, and SOX.
• Oversee and optimize security technology stacks, including firewalls, endpoint protection, IAM, encryption, and monitoring platforms.
• Contribute to business development through security assessments, proposals, and client presentations, helping expand consulting engagements.

Requirements

• Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree or certifications such as CISSP, CISM, or CISA preferred).
• 10+ years of cybersecurity experience, including 5+ years in senior leadership roles (CISO, vCISO, Director of Security, or equivalent).
• Strong expertise in security frameworks and standards, including NIST CSF, ISO 27001, CIS Controls, HIPAA, PCI DSS, and SOX.
• Hands-on experience with enterprise security technologies, including network security, endpoint protection, IAM, encryption, SIEM/SOAR, and cloud security platforms.
• Proven success designing and delivering security programs in complex or regulated environments.
• Demonstrated ability to manage multiple clients, priorities, and projects in a consulting setting.
• Strong executive communication and stakeholder engagement skills.
• Excellent analytical, leadership, and problem-solving abilities.

Nice-to-haves

• Prior cybersecurity consulting experience strongly preferred.

Benefits

• We proudly offer competitive compensation, a comprehensive and well-rounded benefits package for full-time employees that have been designed to nourish your well-being, such as health coverage, wellness programs, 401K company match, self-managed PTO, and other unique incentives that celebrate your accomplishments.
• Remote and Hybrid Work
• Time Off When You Need It
• Benefits That Flex
• Professional Development

Apply tot his job Apply To this Job