GRC Consultant

Overview

We are seeking an experienced ISO 27001 GRC Consultant to support our client in achieving ISO/IEC 27001 certification. This role is crucial for designing and implementing an Information Security Management System (ISMS), conducting risk assessments, developing security policies, and guiding the organization through certification readiness.

Day-to-Day Responsibilities

• Conduct ISO 27001 gap assessments and develop remediation plans to address identified weaknesses.
• Design, implement, and maintain the ISMS framework in alignment with ISO 27001 standards.
• Perform comprehensive risk assessments and develop risk treatment plans tailored to the organization’s needs.
• Develop and maintain security policies, procedures, and documentation to ensure compliance and security best practices.
• Define and manage the Statement of Applicability (SoA) to reflect relevant controls.
• Support internal audits and prepare for certification audits to ensure readiness and compliance.
• Provide expert guidance on ISO 27001 controls and compliance best practices to enhance organizational security posture.

What Makes This Role Unique

This position offers a unique opportunity to work closely with a dynamic team dedicated to enhancing information security. You will play a pivotal role in helping organizations achieve compliance with a globally recognized standard, while also gaining valuable experience in the field of governance, risk, and compliance.

• Bachelor’s degree in Information Security, Information Technology, or a related field.
• Proven experience as a GRC consultant, specifically with ISO 27001 implementation.
• Strong understanding of information security principles and risk management frameworks.
• Excellent communication and interpersonal skills to effectively collaborate with stakeholders.
• Relevant certifications such as ISO 27001 Lead Implementer or Lead Auditor are preferred.
• Ability to work independently and manage multiple projects simultaneously.
• Detail-oriented with strong analytical and problem-solving skills.

• Competitive salary and performance-based bonuses.
• Flexible working hours and the option for remote work.
• Comprehensive health, dental, and vision insurance.
• Professional development opportunities, including training and certifications.
• Generous paid time off and holiday policies.
• Retirement savings plan with company match.
• Employee wellness programs and initiatives.