Information Security Consultant

2 months, 2 weeks ago
Full-time
Senior
Cybersecurity
hatch I.T.

hatch I.T.

hatch I.T. is a specialized technology recruiting firm that supports emerging tech startups in growing their engineering, data, and product teams. They focus on candidate-centric recruiting, bridging the gap between startups and the local tech communit...

Professional Services
11-50
Founded 2012

Description

  • Provide CISO-level advisory guidance to Assura clients.
  • Oversee and mentor Virtual ISOs delivering day-to-day GRC work.
  • Review client deliverables for accuracy, completeness, and practical applicability.
  • Serve as the senior escalation point for complex client questions.
  • Translate regulatory and technical requirements into clear, actionable guidance.
  • Support scope expansion discussions when new client needs emerge.
  • Help improve Assura’s GRC methodologies, templates, and service offerings.
  • Build client confidence through executive-level communication and advisory support.

Requirements

  • Strong experience with NIST frameworks, including 800-53, 800-171, and CSF.
  • SEC 530 familiarity (Virginia Information Security Standard) is strongly preferred.
  • Prior consulting or advisory experience.
  • Ability to communicate confidently with executives and boards.
  • Excellent writing and documentation skills.
  • Technical literacy sufficient to advise on controls without implementing them.
  • ISO, HIPAA, and PCI exposure is preferred.
  • SLED experience outside Virginia is preferred.
  • Familiarity with GRC tools such as Trastero is preferred.
  • Experience mentoring junior practitioners is preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GRC Specialist (GCC / GCCH)

Axiom 11-50 IT Services

The GRC Specialist at this company supports client governance, risk management, and CMMC compliance by scoping environments, guiding documentation, and helping ensure assessments are passed through accurate, consistent execution.

Cybersecurity
1 day, 17 hours ago

Cybersecurity Preparedness Support Expert (Intermediate / Senior)

inventYOU 1-10 Internet Software & Services

inventYOU is hiring Cybersecurity Preparedness Support Experts to support security readiness and risk analysis for complex environments.

Cybersecurity Penetration Testing
2 days, 17 hours ago

Professional Services Engineer - DOW Skillbridge Approved

Corelight 251-1K IT Services

Corelight is hiring a Professional Services team member to help customers deploy and use its cybersecurity products while improving network security and supporting incident investigations and integrations.

Bash Cybersecurity Elasticsearch Kafka Linux Logstash macOS Perl PowerShell Python SIEM Splunk TCP/IP Unix
3 days, 16 hours ago

Penetration Tester

Accenture 100K+ Professional Services

Accenture Federal Services is seeking a Penetration Tester to lead and execute a unified penetration-testing program across network, application, and cloud environments for federal clients.

Burp Suite DevSecOps Metasploit Penetration Testing SOC
3 days, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers