Information Security Advisor

CBIZ, Inc. is a leading professional services advisor to middle market businesses and organizations nationwide. With unmatched industry knowledge and expertise in accounting, tax, advisory, benefits, insurance, and technology, CBIZ delivers forward-thinking insights and actionable solutions to help clients anticipate what's next and discover new ways to accelerate growth. CBIZ has more than 10,000 team members across more than 160 locations in 22 major markets coast to coast.

CBIZ strives to be our team members' employer of choice by creating an environment where team members are appreciated, recognized for their contributions, and provided with opportunities to grow, both personally and professionally, throughout their careers.

Together, CBIZ and CBIZ CPAs are ranked as one of the top providers of accounting services in the United States. CBIZ CPAs is an independent CPA firm that provides audit, review and attest services, while CBIZ provides business consulting, tax and financial services. In certain jurisdictions, CBIZ CPAs operates under its previous name, Mayer Hoffman McCann P.C.

Our Virtual Security Team partners closely with clients to help manage their overall information security and compliance risk across policies, processes, procedures, testing, and key control activities. Services are delivered in alignment with our Service Definition and Project Methodology (IFOTIS), with a strong emphasis on being client-centric and value-driven.

As an External Information Security Advisor (functioning as a Fractional or Virtual CISO), you will serve as a trusted advisor, offering strategic guidance and actionable insight tailored to each client's unique risk profile and business goals.

You will be responsible for ensuring clients are informed about complementary service offerings that create win-win outcomes. You will lead and coordinate cross-functional internal resources, flexing in additional team members as needed based on client demands. You will set and manage expectations for deliverables, maintain clear communication with both internal teams and client stakeholders, and proactively escalate issues or roadblocks to ensure projects remain on track and aligned with client objectives.

This is a full-time position that works remotely and / or out of a regional office, at CBIZ's discretion. Limited travel to client sites and / or company events may be required.

Essential Functions and Primary Duties :

In this role, you will lead and coordinate cybersecurity and compliance services in alignment with CBIZ's Service Definition and Project Methodology, with a strong focus on delivering exceptional client value. Working both independently and collaboratively with other CBIZ resources, you will :

Risk Management & Assessment

• Conduct both automated and manual IT risk assessments.
• Develop and implement risk mitigation and corrective action plans.
• Monitor ongoing risk activities, including tracking remediation progress.
• Perform compliance reviews, such as user access audits and segregation of duties.
• Assist with internal audits for frameworks such as ISO / IEC 27001 and SOC 2.
• Support clients in achieving compliance with regulatory frameworks (e.g., GDPR, HIPAA, CMMC).

Policy & Program Development

Third-Party Risk Management

Project & Relationship Management

Key Skills for Success

Other Duties

Please note that this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Minimum Qualifications

#LI-CF2 #LI-Remote