RemoteLeaf Logo
Log in Sign up

Senior Associate Consultant - Regulatory Compliance

1 day, 2 hours ago
United States
Full-time
Senior
Penetration Tester
Cybersecurity
Cybersecurity SIEM
Apply Now
AHEAD

AHEAD

AHEAD accelerates the impact of technology on clients by engineering customized data, developer, and infrastructure platforms that improve IT operations. By weaving together cloud infrastructure, intelligent operations, and modern applications, we help...

IT Services
1K-5K
$43M raised
View All Jobs 55

Description

  • Apply compliance frameworks such as NIST, ISO, CMMC, and SOC 2 to assess, design, and implement security controls in enterprise environments.
  • Conduct compliance gap assessments and develop remediation plans to support audit readiness.
  • Create and maintain documentation including risk assessments, controls mapping, compliance roadmaps, and policies.
  • Support clients in developing and maturing their governance, risk, and compliance programs.
  • Manage defined workstreams with minimal oversight and maintain continuity across client engagements.
  • Track and proactively mitigate risks through RAID documentation.
  • Communicate project status, risks, decisions, and recommendations clearly to clients and stakeholders.
  • Produce client-ready deliverables with minimal rework and use QA processes to ensure quality and consistency.
  • Support knowledge transfer and training so client teams can sustain compliance after the engagement.
  • Stay current on evolving compliance frameworks, regulatory changes, and security best practices to advise clients.

Requirements

  • Bachelor’s degree in Engineering, Computer Science, IT Management, Cybersecurity, or a related field preferred, but not required.
  • 4–6 years of relevant professional experience, including at least 2 years in a client-facing role.
  • 1–2 professional and/or technical certifications in IT security, cloud security, or application security, such as CompTIA Security+ or ISC2 CC.
  • Strong understanding of common compliance frameworks such as NIST, ISO, and CMMC and how they apply in enterprise environments.
  • Ability to identify what good assessment evidence looks like beyond policy and procedure language; a technical assessment will be part of the interview process.
  • Knowledge of cybersecurity technologies such as SIEM, vulnerability management, and endpoint security and how they support compliance mandates.
  • Hands-on experience with GRC tools and platforms such as Archer, ServiceNow GRC, or similar.
  • High proficiency in Microsoft Office Suite and excellent verbal and written communication skills.
  • Comfort presenting to groups in virtual and in-person settings.
  • Strong problem-solving and interpersonal skills with the ability to work effectively across diverse stakeholders.

Benefits

  • $95,000–$120,000 annual OTE, including base salary and any applicable target bonus.
  • Medical, dental, and vision insurance.
  • 401(k) plan.
  • Paid company holidays.
  • Paid time off.
  • Paid parental and caregiver leave.
  • Cross-department training and development opportunities.
  • Sponsorship for certifications and credentials for continued learning.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Jensen Hughes

SECURITY CONSULTANT

Jensen Hughes 1K-5K Construction & Engineering

Jensen Hughes is seeking a Senior Security Consultant in India to support security consulting projects across the Middle East, with a focus on designing and delivering comprehensive physical and electronic security solutions for clients.

India Full-time Lead Penetration Tester
2 hours, 10 minutes ago
Coinbase

Senior Offensive Security Engineer (IOT / Network Pentesting)

Coinbase 1K-5K Capital Markets

Coinbase is hiring a Senior Offensive Security Engineer to assess and strengthen the digital security of physical spaces and connected systems as part of its Application Security team.

United States Full-time Senior Embedded Systems Engineer Penetration Tester
$186k-$219k
IoT LLM Machine Learning Network Security Penetration Testing
4 hours, 40 minutes ago
Twilio

Staff Engineer, Offensive Security

Twilio 5K-10K Diversified Telecommunication Services

Twilio is hiring a remote Staff Engineer, Offensive Security in Ireland to lead advanced offensive security work that identifies systemic risk across applications, networks, cloud environments, and AI systems.

Ireland Full-time Lead Penetration Tester
Android AWS Azure Bash Burp Suite C++ iOS Kubernetes Metasploit Network Security Nmap Penetration Testing Python SIEM TensorFlow Wireshark
5 hours, 40 minutes ago
GitLab

Principal Cybersecurity Incident Manager (USA)

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Cybersecurity Incident Manager to lead security incident response across its SaaS, dedicated, and corporate environments while building and maturing the company’s incident command function.

United States Full-time Lead Penetration Tester
$168k-$270k
AWS DevSecOps GCP GitLab Kubernetes SIEM
7 hours, 40 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers