Virtual GRC Consultant
CybHrSec is seeking a Virtual GRC Consultant to support cybersecurity, governance, risk management, compliance, and advisory initiatives for clients. This role will help organizations understand cybersecurity risks, improve compliance readiness, develop practical governance structures, and implement human-centered cybersecurity practices.
Full role overview
CybHrSec is seeking a Virtual GRC Consultant to support cybersecurity, governance, risk management, compliance, and advisory initiatives for clients. This role will help organizations understand cybersecurity risks, improve compliance readiness, develop practical governance structures, and implement human-centered cybersecurity practices.
Responsibilities
- Conduct cybersecurity and compliance assessments
- Support ISO 27001 readiness and implementation activities
- Support SOC 2 readiness initiatives
- Perform risk assessments and maintain risk registers
- Develop and review policies, standards, and procedures
- Support third-party and vendor risk assessments
- Prepare executive reports and compliance documentation
- Assist with remediation planning and risk treatment activities
- Support cybersecurity awareness and training initiatives
- Contribute to implementation of the CybHrSec HCC-GRC framework
Preferred Qualifications
- Experience in cybersecurity, governance, risk management, audit, compliance, privacy, or information security
- Familiarity with frameworks such as NIST Cybersecurity Framework (CSF), ISO 27001, SOC 2, HIPAA, PCI DSS, or similar standards
- Strong communication and stakeholder engagement skills
- Ability to translate technical concepts into business language
Certifications
Preferred certifications may include:
Security+ISO 27001CISACRISCCGRCCISMCISSP