CrawlJobs Logo
Robert Half Logo Robert Half · IT - Administration

Grc Consultant

United States, Schaumburg · Job Posted June 02, 2026
Apply Position
Job Link Share

Job Description

Our client is seeking a seasoned Cybersecurity GRC Consultant to support the next phase of their security program, with a focus on enhancing governance, risk, and compliance capabilities. This engagement will build upon an established security foundation and drive alignment with global regulatory and compliance standards.

Job Responsibility

  • Lead gap analysis efforts to assess current cybersecurity posture against frameworks such as NIST
  • Develop and implement governance, risk, and compliance (GRC) processes
  • Help mature security operations into a compliance-driven program
  • Support international compliance initiatives, including China and other global regions
  • Establish and refine policies, procedures, and control frameworks
  • Partner with stakeholders to align cybersecurity practices with regulatory requirements

Requirements

  • 8+ years in cybersecurity, with strong focus on GRC and compliance
  • Proven experience with NIST framework implementation and audit readiness
  • Background in large enterprise environments
  • Experience conducting gap assessments and building compliance roadmaps
  • Strong knowledge of cloud environments (AWS) and Microsoft security ecosystem

Nice to have

  • Exposure to tools such as CrowdStrike, Sumo Logic, SpyCloud, ManageEngine, Purview, Keeper
  • Experience working in multi-national regulatory environments, particularly China
  • Ability to operate in environments without a formal GRC platform

What we offer

  • medical, vision, dental, and life and disability insurance
  • 401(k) plan
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Grc Consultant

8 matching positions

GRC Consultant

Sopra Steria offers tailored, end-to-end corporate technology and software solut...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in the domain
  • extensive experience with information security management systems (ISMS), compliance audits and ensuring security-by-design
  • interest in AI security developments
  • familiarity with IT processes based on e.g. ITIL
  • knowledge of standards and legislations such as ISO2700x, NIS2, GDPR, AI and Cyber Fundamentals
  • experience working in the EU or public sector, navigating complex projects
  • fluency in English, French and/or Dutch
  • certifications such as CISSP, CISA, CISM, CRISC or ISO27001 - Lead Implementor or Lead Auditor, AI risk management (ISO42001) is desirable.
Job Responsibility
Job Responsibility
  • design and develop secure solutions to complex application problems - deliver clients projects end-to-end, interfacing across stakeholders
  • implement hardening controls using CIS benchmark across different system components and applications to reduce attack surface
  • lead risk assessments, identification, analysis, treatment, and monitoring across clients
  • perform BCPs, draft Security Plans and roadmaps, ensure third-party risk management
  • cooperate with key stakeholders such as CISO
  • implement/support DevSecOps processes and security engineering review of code and IT configuration
  • support internal and external audits including audit planning, evidence gathering, gap analysis, and remediation tracking
  • support business development and GRC team in driving NIS2 and AI security initiatives and projects
  • support presale process by drafting and leading relevant offers, RFPs, etc.
What we offer
What we offer
  • extensive career development opportunities, both local and international
  • participation in Sopra Steria Academy
  • dynamic network of 56,000 professionals
  • wide array of offices to explore to find ideal location
  • Fulltime
Read More
Arrow Right

Medior-Senior GRC Consultant - Regulatory and Compliance focus

We ensure that all operations, digital or otherwise, meet the latest quality and...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience in the Cybersecurity business landscape
  • Proficiency in Dutch and English is mandatory
  • Advanced knowledge of the 'cyber regulatory area'
  • Understanding of AI Act, DORA is a plus
  • Strong experience in performing Compliance Maturity assessments, Data Protection Impact Assessments and to apply Data protection by Design/By default and risk-based approach, perform quality legal compliance analyses and produce good quality reports
  • ISO27001 certification is a plus, experience in ITSRM, and a good understanding of compliance-oriented projects
  • Strong knowledge of PM roles and the ability to independently handle content-oriented missions
  • Client-oriented with the ability to navigate the EU and national regulatory environment, engaging with various stakeholders (regulators, EU, CISO, DPO)
  • A hands-on approach with a solution-oriented mindset, capable of effective communication within the business environment
  • Independence in client-oriented projects and adept at identifying opportunities
Job Responsibility
Job Responsibility
  • Lead regulatory compliance projects
  • Interpret complex legislation such as AI Act and DORA
  • Apply technical knowledge in cybersecurity to enhance the company’s security posture
  • Contribute to pre-sales activities
  • Draft RFPs
  • Understand the broader EU and national business landscapes
What we offer
What we offer
  • Extensive career development opportunities
  • Dynamic network of 56,000 professionals
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Solutions Consultant

We are looking for a dynamic, customer-facing Solutions consultant to be the pri...
Location
Location
United States , Los Angeles; Seattle; Portland; Denver; Chicago; Austin; Dallas; New Orleans; St. Louis; Baltimore; Boston; Miami; Philadelphia; Pittsburgh; Washington D.C.
Salary
Salary:
100000.00 - 130000.00 USD / Year
https://www.upguard.com Logo
UpGuard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years in a customer-facing technical role such as a Solutions Consultant, Sales Consultant, Technical Account Manager, or Professional Services Consultant
  • Experience in a post-sales or expansion focused role is highly preferred
  • Deep understanding of the cybersecurity and GRC landscape (e.g., GRC platforms like ServiceNow
  • SIEMs like Splunk
  • or other security stack tools)
  • A passion for becoming a deep subject matter expert on a complex software platform
  • Hands-on experience with REST APIs is essential
  • You must be comfortable guiding customers on implementation, reading documentation, and using tools like Postman to troubleshoot
Job Responsibility
Job Responsibility
  • Drive Technical Expansion: Act as the key technical partner for Account Managers and CSMs during renewal and upsell motions. You will lead technical deep-dives, run customized product demonstrations, and build "proof-of-value" solution architectures for our new multi-product offerings
  • Serve as the Go-To Product Expert: Maintain an expert-level understanding of the UpGuard platform, its architecture, API capabilities, and competitive differentiators. You will be the technical authority the CS team relies on to answer complex customer questions
  • Architect Complex Solutions: Design, scope, and validate deep technical solutions for our customers. This includes architecting robust API integrations to connect UpGuard with our customers' key systems (like GRC platforms, SIEMs, and other security tools)
  • Manage Critical Technical Escalations: Act as an escalation point to "bridge the gap" between standard technical support and our CSMs. You will take ownership of high-priority technical issues that require deep, hands-on solutioning within a customer's environment
  • Enable the Team: Create and maintain a library of technical documentation, best-practice guides, integration playbooks, and demonstration scripts to empower the entire Customer Success team
What we offer
What we offer
  • Monthly Lifestyle subsidy: Use this for financial, physical, and mental well-being
  • WFH set-up allowance: To ensure you have the right environment to work in, we will help you get set up within your first 3 months at UpGuard
  • $1500 USD annual Learning & Development allowance: To support your career development, all team members will be able to expense development opportunities against this allowance
  • Annual leave: 6 weeks PTO plus two additional UpGuardian leave days to give you time to recharge your batteries
  • 18 weeks paid Parental Leave: Irrespective of parenting role
  • Personal Leave Allowance: This includes sick & carer’s leave
  • Fully remote working environment: While we have physical offices in Sydney & Hobart, we do not mandate compulsory attendance
  • Top-spec hardware: All team members will be provided with top-spec laptops for their role
  • Generative AI subsidy: UpGuard provides paid subscriptions for all team members to access generative AI tools to support their work
  • Health Insurance: Health, dental, and vision insurance
  • Fulltime
Read More
Arrow Right

Lead Cyber Security Consultant

As a Lead Cyber Security Consultant at Actica Consulting, you will have the oppo...
Location
Location
United Kingdom , London; Guildford; Bristol; M4 corridor
Salary
Salary:
Not provided
actica.co.uk Logo
Actica Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of complex ICT systems security in a technical delivery or consulting capacity in the UK Defence sector or Public Sector
  • The ability to present and justify conclusions to project teams and business stakeholders
  • Proven abilities in delivering to client expectations and requirements
  • Strong verbal and written communications skills
  • Must be eligible and willing to obtain UK Government Security Clearance
Job Responsibility
Job Responsibility
  • Leading one or more Actica teams to undertake varying consultancy assignments
  • Providing security expertise for major system procurements and Agile programmes to ensure secure delivery
  • Identifying, analysing and evaluating information risks across a range of programmes, projects and systems
  • Explaining to risk owners the causes, likelihood and potential business impacts of information risks
  • Identifying and presenting options for treating or transferring information risks
  • Authoring and/or supporting the development of security assurance documentation
  • Developing or reviewing new security architectures
  • Scoping security testing activities, and explaining the results and required remediation
  • Managing the delivery of security services by Actica teams across several live projects
  • Working with our client-side customers to manage contract delivery
What we offer
What we offer
  • 25 days of paid leave per annum plus 8 UK bank holidays
  • Discretionary, Performance-Based Bonus Scheme
  • Enrolment in Stakeholder Pension Scheme
  • Cycle To Work Scheme
  • Employee Assistance Programme
  • Electric Vehicle Leasing Scheme
  • Private Medical Insurance
  • Substantial training leading to nationally recognised certifications
  • Mentor support and guidance
  • Performance and Development Manager for regular reviews and career progression planning
  • Fulltime
Read More
Arrow Right

Cyber Security ITRM Consultant

Responsible for developing, implementing, and maintaining the organisation's IT ...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in IT Risk Management frameworks, threat modelling, and risk scenario planning
  • Strong understanding of regulatory requirements and compliance frameworks
  • Expertise in GRC platforms (ServiceNow GRC, RSA)
  • Proficiency in risk scoring methodologies and control gap analysis
  • 8-12 years experience
  • Education: B.E./ B.Tech./MCA
Job Responsibility
Job Responsibility
  • Conduct comprehensive risk assessments: identification, impact analysis, heatmap/matrix creation, inherent vs. residual risk scoring, and control gap analysis
  • Perform threat modelling and develop detailed risk scenarios for IT infrastructure, applications, and cloud environments
  • Align IT risk practices with industry frameworks and standards (ISO 27005/27001, NIST RMF, PCI DSS, DORA)
  • Evaluate and maintain IT controls and security posture, recommending enhancements where necessary
  • Support internal and external IT audit processes, ensuring timely remediation of findings
  • Work with GRC teams (ServiceNow GRC, RSA) to track and manage risk compliance workflows
  • Prepare and present risk dashboards, KRIs, and management reports to senior leadership
  • Fulltime
Read More
Arrow Right

Senior Information Security Consultant (QSA)

PGI is a global consultancy that helps organisations build digital resilience. W...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relationship management skills and experience in Information Assurance consultancy
  • Qualified Security Assessor (QSA) experience with valid PCI-DSS QSA accreditation with a minimum of 2 years of experience performing PCI DSS compliance consultancy
  • Familiarity with PCI DSS and NIST CSF
  • Experience in conducting risk assessments, cyber security maturity evaluations, and remediation strategies
  • Strong communication skills, able to present to clients and senior stakeholders
  • A collaborative, solutions-oriented mindset with excellent time-management skills
Job Responsibility
Job Responsibility
  • Provide expert guidance to clients, supporting both pre-sales and delivery, and establishing trusted advisor relationships to drive compliance and security improvements
  • Lead and deliver hands-on PCI DSS compliance consultancy, performing assessments, gap analyses, and remediation strategies tailored to client needs
  • Act as a subject matter expert in PCI DSS compliance and Governance, Risk, and Compliance (GRC), advising clients on regulatory compliance, risk management, and information security best practices
  • Contribute to PGI’s consultancy growth by aligning services with emerging trends and industry standards. Drive PGI’s accreditations and assist with maintaining ISO 27001, PCI DSS and data protection compliance
  • Mentor junior team members, contribute to the recruitment process, and oversee third-party relationships to ensure project profitability and delivery quality
  • Stay ahead of industry trends, emerging security threats, and best practices to maintain professional growth and continuously improve PGI’s consultancy offerings
Read More
Arrow Right

Grc Consultant

In Cyclad we work with top international IT companies in order to boost their po...
Location
Location
Poland
Salary
Salary:
110.00 PLN / Hour
cyclad.pl Logo
Cyclad Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–6 years of experience as a GRC Consultant or in a similar IT security role
  • Solid knowledge of IT risk management, cybersecurity frameworks, and compliance practices
  • Strong understanding of Agile methodologies
  • Experience in vulnerability management and remediation
  • Ability to manage stakeholders and communicate effectively across teams
  • Strong analytical thinking and problem-solving skills
  • Independent, proactive mindset with a consultant approach
Job Responsibility
Job Responsibility
  • Ensure deployment of security and continuity policies across the organization
  • Influence business decisions to align with security goals and objectives
  • Ensure applications are onboarded into relevant security tools (SAST, AVS, Pentests, SCA, ANON)
  • Promote security by design and security by default principles in software architecture and development
  • Support troubleshooting and debugging of security issues
  • lead cross-functional vulnerability remediation initiatives
  • Participate in agile ceremonies (Sprint Planning, Backlog Review) with a strong focus on security
  • Provide regular reporting on application security levels and vulnerabilities to IT Risk & Cyber Security stakeholders
  • Share best practices with central IT Risk & Cyber Security teams and other security officers
  • Coordinate and follow up on continuity tests and exercises
What we offer
What we offer
  • Private medical care with dental care (covering 70% of costs). Family package option possible.
  • Multisport card (also for an accompanying person).
  • Life insurance.
  • Work with talented engineers on large-scale, technically challenging projects.
  • Fulltime
Read More
Arrow Right

Senior Security Consultant

As a Senior Security Technical Architect at NTT DATA, you will design complex se...
Location
Location
Philippines , Metro Manila
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Possess at least 8 years of working experience related to information security consulting with a minimum of 5 years of hands-on experiences on GRC practice areas
  • Required degree level education, or significant experience and track record with tertiary qualifications on relevant domains, including computer science, computer engineering and information security
  • Information security and audit certifications such as ISO 27001 LI, ISO 27001 LA, CISA, CRISC, CISSP
  • Experienced in supporting consulting pre-sales work (e.g. writing SoWs, proposals etc.)
  • Demonstrate excellent skills in structured problem solving techniques, creativity and intelligence in the development of solutions to customer problems
  • Be self-motivated and self-disciplined with a demonstrable and successful track record in delivering consultancy projects to all sizes of organizations
  • Must have good presentation skills with the ability to present to audiences of both business and IT stakeholders
  • Must have good written communication and report writing skills
  • Must be a good team player
  • Demonstrates commitment to delivering projects within time and in budget and to a high level of client satisfaction
Job Responsibility
Job Responsibility
  • Deliver and lead GRC (Governance, Risk and Compliance) security consulting projects covering the following key areas: ISMS (ISO27001) Advisory
  • Security Maturity/Posture Assessments
  • Third party security assessments
  • Cloud Security posture assessments
  • Risk assessments
  • PCI DSS Gap Analysis
  • Security compliance assessments
  • Information security framework design (policies, processes and procedures)
  • Support security consulting pre-sales work (e.g. writing SoWs, proposals etc.)
  • Be flexible to acquire new skills and show willingness in learning/re-learning and un-learning things as needed for the success of this role and the overall security consulting practice
  • Fulltime
Read More
Arrow Right