Information Security Consultant

Job Summary

A company is looking for an Information Security/GRC Consultant.

Key Responsibilities

• Perform risk assessments, identify vulnerabilities, and recommend mitigation strategies
• Develop and implement IT governance frameworks and ensure compliance with relevant regulations and standards
• Create and maintain security policies and support audit preparations and compliance reporting

Required Qualifications

• Three or more years in a consulting or advisory role related to information security
• A bachelor's degree in a related field or equivalent experience
• Industry-recognized information technology and/or security certification(s) (e.g., CISSP, CISA, CCSP, ITIL)
• Familiarity with firewalls, intrusion detection/prevention, and cloud security (AWS, Azure, GCP)
• Ability to speak to frameworks and standards such as NIST, ISO/IEC 27001, and SOC 2