Consultant, Principal

The Principal Consultant will provide subject matter expertise and leadership in support of client engagements involving maritime cybersecurity policy, regulatory interpretation, and critical infrastructure risk. This role will serve as a trusted advisor to clients and senior decision makers, helping translate cybersecurity and regulatory requirements into practical guidance for maritime stakeholders. As part of a project team, the Principal Consultant will also help strengthen client relationships and support identification of new business opportunities.

What You Will Do:

  • Draft and support national maritime cybersecurity policy for regulated ports.
    • Analyze existing maritime security and cybersecurity regulations, policies, and guidance.
    • Support development of practical cybersecurity policy and implementation guidance for regulated facilities and maritime stakeholders.
    • Translate statutory, regulatory, and policy requirements into actionable recommendations and operational guidance.
  • Advise senior leadership on cyber risks affecting critical maritime infrastructure across the United States.
    • Provide subject matter expertise on threats, vulnerabilities, risk posture, and operational impacts affecting ports, terminals, and related maritime infrastructure.
    • Support executive decision-making through briefings, analysis, and strategic recommendations.
    • Assist clients in evaluating cybersecurity risk in the context of regulatory compliance, operational continuity, and national security priorities.
  • Apply strong knowledge of Maritime Transportation Security Act (MTSA) and U.S. Coast Guard (USCG) policy to translate regulatory and policy requirements into practical cybersecurity guidance for maritime stakeholders and regulated facilities.
    • Interpret and apply MTSA-related requirements and USCG maritime security policy.
    • Support development of guidance, frameworks, and implementation approaches for regulated entities.
    • Help clients understand compliance expectations and risk-informed approaches to cybersecurity in the maritime environment.
  • Develop cybersecurity training for inspectors.
    • Develop training objectives, course materials, exercises, job aids, and instructional content for inspection personnel.
    • Tailor content to maritime operational environments and inspection use cases.
    • Support training delivery, facilitation, and continuous improvement based on feedback and evolving policy requirements.
  • Conduct research, analysis, and stakeholder engagement in support of maritime cybersecurity initiatives.
    • Perform research and data analysis related to maritime cybersecurity, critical infrastructure protection, and regulatory implementation.
    • Prepare written documents, reports, briefing papers, policy memoranda, and presentations.
    • Develop conclusions and recommendations and present findings to clients and stakeholders.
    • Engage with government, industry, and other stakeholders to gather input and support policy and program development.
  • Develop relationships with existing customers to facilitate development of new business opportunities for current and additional services.
    • Learn, understand, and be conversant in ABS Consulting cybersecurity, maritime security, critical infrastructure, and risk management capabilities.
    • Meet with new and existing clients and actively listen to their needs.
    • Communicate client needs to project managers and supervisors, including emerging cyber threats, regulatory developments, and maritime security priorities.
    • Review published reports, policy updates, and news articles about existing and prospective clients to identify customer intelligence and business opportunities.
    • Participate in proposal development, including writing technical and management content.
    • Participate in marketing activities, conference presentations, technical white papers, and thought leadership initiatives.
  • While the position is remote, regular travel (50%+) to client sites and project locations is a core part of the role.

What You Will Need:

Education and Experience

  • Must have a bachelor’s degree or equivalent experience in cybersecurity, information systems, engineering, public policy, homeland security, maritime studies, or a related field.
  • 8+ years of relevant professional experience in cybersecurity, maritime security, critical infrastructure protection, regulatory policy, or related consulting work.
  • Demonstrated experience supporting government or regulated-industry clients.
  • Must have or be able to obtain and maintain an Active Security Clearance.

Knowledge, Skills, and Abilities

  • Strong knowledge of maritime cybersecurity, critical infrastructure risk, and the U.S. maritime regulatory environment.
  • Strong familiarity with MTSA and USCG policy.
  • Ability to gain, retain, comprehend, and transfer knowledge to other members of the team.
  • Ability to mentor and coach junior consultants and strengthen technical skills in others.
  • Ability to actively listen to client needs, determine the context of information provided, ask probing questions, retain information for future use, and respond with practical solutions.
  • Ability to utilize established rapport and subject matter expertise with existing clients to facilitate development of new business.
  • Must understand departmental goals and hold self and team members accountable for commitments and high standards.
  • Strong time management skills and ability to manage multiple assignments simultaneously.
  • Strong writing, briefing, and presentation skills.
  • Ability to translate complex cybersecurity, regulatory, and policy concepts into clear, practical guidance.
  • Ability to work effectively with clients, regulators, and internal teams.

Preferred Technical and Domain Experience

  • Experience supporting the USCG, Department of Homeland Security, port authorities, or other maritime sector stakeholders.
  • Experience with cybersecurity policy development, regulatory analysis, or implementation guidance.
  • Experience with critical infrastructure risk assessment and resilience planning.
  • Familiarity with widely used cybersecurity frameworks and standards, such as NIST guidance, is preferred.
  • Familiarity with operational technology (OT) or industrial control systems (ICS) cybersecurity.
  • Experience developing and delivering cybersecurity training.
  • Experience with vulnerability assessment methodologies and related tools is preferred.

Preferred Professional Requirements

Professional certification preferred. Candidate should possess one or more cybersecurity certifications aligned to senior-level cybersecurity, risk, compliance, resilience, or critical infrastructure support roles.

Examples of preferred certifications include:

  • CISSP
  • CISM
  • CASP+ CE
  • CCISO
  • GSLC
  • CISA
  • GCED
  • GCIH
  • CGRC
  • Security+
  • PMP

Salary Range

$130K - $140K

Country Requirements

U.S. Citizenship required for roles supporting government contracts.

Reporting Relationships

Reports to a Manager.