Security GRC Consultant
About The Role
Seeking a highly skilled and experienced Security Governance Risk Compliance (GRC) Consultant to join our dynamic team. The GRC Consultant will play a crucial role in advising clients on security policies, assessing risk, and ensuring compliance with industry regulations. The ideal candidate should have a strong background in cybersecurity, risk management, and regulatory compliance.
In this role, you'll get to...
develop and implement security governance frameworks, policies, and procedures
collaborate with stakeholders to establish and maintain an effective security governance structure
2. Risk Management:
conduct risk assessments to identify and evaluate potential security risks
provide guidance on risk mitigation strategies and action plans
develop and maintain risk registers and reports
3. Compliance Management:
stay abreast of relevant industry regulations, standards, and best practices
assess and ensure compliance with regulatory requirements (e.g., GDPR, HIPAA, ISO 27001)
assist clients in preparing for and responding to audits
4. Security Awareness and Training:
develop and deliver security awareness and training programs
work with clients to enhance their security culture and awareness
5. Client Consultation:
serve as a trusted advisor to clients on security governance, risk management, and compliance matters.
conduct regular reviews and assessments of security controls.
6.Documentation and Reporting:
prepare comprehensive reports and documentation related to security governance, risk assessments, and compliance.
communicate findings and recommendations to both technical and non-technical stakeholders.
perform other duties as assigned
On day one, we'll expect you to...
have a bachelor’s degree in Information Security, Cybersecurity, or a related field
have proven experience in security governance, risk management, and compliance
possess solid experience in managing audits and maintaining for SOC 2 Type II compliance
have skill in leading people and getting results with a strong client orientation
be knowledge of relevant industry regulations and standards
possess professional certifications such as CISSP, CISM, CRISC, or equivalent
have strong analytical and problem-solving skills
have excellent communication and presentation abilities
have a fully functional and up-to-date computer with which to perform duties
be willing to install next generation end point protection on the computer
have a US citizenship
be willing to work during client hours
Opportunities for career advancement in the dynamic field of cybersecurity. If you are a passionate and experienced Security GRC professional looking to contribute to the cybersecurity efforts of our clients, we invite you to apply for the Security GRC Consultant position at Pandoblox. Join our team and be part of our mission to secure the digital future.
To apply, please send your resume and a cover letter outlining your relevant experience into the platform.
This is a work from home position.