Risk Consulting Supervisor 1

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM.

Position Summary
We are seeking a seasoned professional to join our Technology Risk Consulting team as a Supervisor specializing in Cloud Security Audit and Enterprise Cloud Risk & Resilience Assessments. This role involves managing complex audit engagements, mentoring junior consultants, and driving strategic client outcomes across multi-cloud environments. The ideal candidate will bring deep expertise in cloud security, risk management, and regulatory compliance, along with strong leadership and client-facing skills.

Key Responsibilities

• Lead and supervise cloud security and resilience audit engagements across AWS, Azure, and GCP.
• Oversee planning, execution, and reporting phases of audits, ensuring alignment with IIA standards and client expectations.
• Evaluate CSP risk indicators, SLAs, compliance attestations, and shared responsibility matrices.
• Assess enterprise control sets for completeness, traceability, automation, and alignment with compliance frameworks (SOC, PCI, HITRUST, CIS, NIST).
• Review and enhance SDLC, production readiness, and application onboarding processes for control validation.
• Conduct sample assessments of critical and non-critical cloud applications to validate control implementation and resilience planning.
• Deliver executive-level reports, findings, and strategic recommendations to senior stakeholders.
• Mentor and guide junior team members, fostering skill development and knowledge sharing.
• Collaborate with cross-functional teams including Cloud Engineering, DevOps, Risk, and Internal Audit.
• Contribute to thought leadership, methodology development, and continuous improvement initiatives.

Required Qualifications

• Bachelor's and/or master's degree in information systems, Cybersecurity, or related field.
• 8+ years of experience in IT audit, cloud security, or risk consulting, with at least 2 years in a supervisory or lead role.
• Excellent communication skills, with fluency in English—both written and verbal—to effectively engage with global clients, present findings, and lead stakeholder discussions.
• Professional certifications such as CISA, CISSP, CCSP, CTPRA, or cloud-specific credentials (AWS, Azure, GCP).
• Strong understanding of cloud infrastructure components (VMs, containers, serverless, networking).
• Familiarity with compliance frameworks and benchmarks (SOC, PCI, HITRUST, CIS, CSA CCM, NIST
• Proven experience working in global/multinational teams.
• Flexibility to work in U.S. time zones and support cross-border engagements.

Preferred Skills

• Prior experience in a Big 4 or similar consulting environment.
• Hands-on experience with Infrastructure as Code (IaC), Policy as Code (PaC), DevSecOps, and cloud automation.
• Ability to assess cloud application architecture for security and resilience risks.
• Strong analytical, documentation, and stakeholder engagement skills.
• Experience in developing audit methodologies and client engagement strategies.

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients. Learn more about our total rewards at

RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Indian Armed Forces; Indian Armed Forces Veterans, and Indian Armed Forces Personnel status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation.

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please send us an email